Hi, I just finished my own crypter, I write it in vb and it works "great". Scanning online it went from 27/35 detection to 1/35, the only problem is that it is only scantime. Practically it merges the stub, the crypted payload and a file to bind with, using a certain string as splitter, when the file is ran it splits the contents and create a temp .exe with the payload encrypted and then execute it. Logically the AV detects it and removes it before it's launched so it is pretty useless. I read about the runtime crypter that decrypt the payload directly in memory so the AV can't detect it, but I don't understand how to do it, so can someone point me in the right direction? Maybe linking me something about it, I'll appreciate. Thanks
Forum Thread: Make Runtime Crypter
- Hot
- Active
-
Forum Thread:
Free Proxy Servers?
9
Replies
7 hrs ago -
Forum Thread:
Hack and Track People's Device Constantly Using TRAPE
32
Replies
1 day ago -
Forum Thread:
12 Ways How to Hack Any Social Network and Protect Yourself 2018
1
Replies
1 day ago -
Metasploit Error:
Handler Failed to Bind
40
Replies
4 days ago -
Forum Thread:
How to Know if You Are a Script Kiddie?
9
Replies
2 wks ago -
Forum Thread:
How to Identify and Crack Hashes
8
Replies
2 wks ago -
Forum Thread:
How to Hack School Website
8
Replies
3 wks ago -
Forum Thread:
Whenever I Try "Airmon-Ng Start wlan0" There's an Error?
16
Replies
3 wks ago -
Forum Thread:
How to Fix 'Failed to Detect and Mount CD-ROM' Problem When Installing Kali Linux
14
Replies
3 wks ago -
Forum Thread:
Awesome Keylogging Script - BeeLogger
30
Replies
1 mo ago -
Forum Thread:
How to Hack Android Phone Using Same Wifi
27
Replies
1 mo ago -
Forum Thread:
Complete Guide to Creating and Hosting a Phishing Page for Beginners
48
Replies
1 mo ago -
Forum Thread:
Create and Use Android/Meterpreter/reverse_tcp APK with Msfvenom?
121
Replies
1 mo ago -
How to:
Minecraft DoS'Ing with Python.
1
Replies
2 mo ago -
Forum Thread:
HELP I Created an Apk for Hacking My Phone Using Kali Linux in Virtual Box How Can I Install That Apk on My Phone
17
Replies
2 mo ago -
Forum Thread:
Tools for Beginner Hacker
3
Replies
2 mo ago -
Forum Thread:
How to Embed an Android Payload in an Image?
9
Replies
3 mo ago -
Forum Thread:
Metasploit reverse_tcp Handler Problem
46
Replies
3 mo ago -
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
11
Replies
3 mo ago -
Forum Thread:
Fix Initramfs Problem
5
Replies
3 mo ago
-
How To:
Create Custom Wordlists for Password Cracking Using the Mentalist
-
How To:
Embed a Metasploit Payload in an Original .Apk File | Part 2 – Do It Manually
-
How To:
Crack SSH Private Key Passwords with John the Ripper
-
Android for Hackers:
How to Turn an Android Phone into a Hacking Device Without Root
-
Tutorial:
Create Wordlists with Crunch
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
How To:
Spy on Traffic from a Smartphone with Wireshark
-
How To:
Hack Android Using Kali (Remotely)
-
How To:
The Hacks Behind Cracking, Part 1: How to Bypass Software Registration
-
How to Hack Wi-Fi:
Stealing Wi-Fi Passwords with an Evil Twin Attack
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Dox Anyone
-
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
-
How To:
Manually Exploit EternalBlue on Windows Server Using MS17-010 Python Exploit
-
Hack Like a Pro:
How to Crack Online Web Form Passwords with THC-Hydra & Burp Suite
-
How To:
Bypass File Upload Restrictions on Web Apps to Get a Shell
-
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
How To:
Write an XSS Cookie Stealer in JavaScript to Steal Passwords
-
How To:
Phish for Social Media & Other Account Passwords with BlackEye
2 Responses
You can take a look to the code of UPX . It is a packer, but the principle is the same (run-time unzip pretty much the same than run-time decrypt). Maybe somebody else can give you better pointers specifically for Windows.
You can also take a look to this very basic article for the overall idea on how they work. It targets ELF format for Linux though.
For Windows the executable format is called PE . I bet it would be pretty much the same thing but I had never played with PE so I cannot say for sure.
Good Luck
Thank you, I'll give it a shot
Share Your Thoughts