Hi, I just finished my own crypter, I write it in vb and it works "great". Scanning online it went from 27/35 detection to 1/35, the only problem is that it is only scantime. Practically it merges the stub, the crypted payload and a file to bind with, using a certain string as splitter, when the file is ran it splits the contents and create a temp .exe with the payload encrypted and then execute it. Logically the AV detects it and removes it before it's launched so it is pretty useless. I read about the runtime crypter that decrypt the payload directly in memory so the AV can't detect it, but I don't understand how to do it, so can someone point me in the right direction? Maybe linking me something about it, I'll appreciate. Thanks
Forum Thread: Make Runtime Crypter
- Hot
- Active
-
Forum Thread:
How to Crack Instagram 6 Digit Confirmation Code When You Have the Password?
1
Replies
1 hr ago -
Forum Thread:
Creating an Completely Undetectable Executable in Under 15 Minutes!
36
Replies
8 hrs ago -
Forum Thread:
Boosting TX Power on Alfa AWUS036NHA
4
Replies
3 days ago -
Forum Thread:
How to Gain Access to an Android Over WAN
22
Replies
6 days ago -
Backdoor, Listeners:
How to Know if Your Computer or Smartphones Have One?
27
Replies
1 wk ago -
Forum Thread:
HELP I Created an Apk for Hacking My Phone Using Kali Linux in Virtual Box How Can I Install That Apk on My Phone
16
Replies
1 wk ago -
Forum Thread:
How to Embed an Android Payload in an Image?
8
Replies
1 wk ago -
Forum Thread:
Complete Guide to Creating and Hosting a Phishing Page for Beginners
44
Replies
1 wk ago -
Forum Thread:
Learn to Hack an Android Device Over the Internet Remotely
4
Replies
1 wk ago -
Forum Thread:
Cracking Passwords Using John the Ripper
14
Replies
1 wk ago -
Forum Thread:
Hacking Facebook,Twitter,Instagram Account Passwords with BruteForce
161
Replies
1 wk ago -
Forum Thread:
Need Help with FatRat Over WAN
3
Replies
1 wk ago -
How to:
Embed MSF Payload in Original APK Files | Part #1 - Using TheFatRAT
22
Replies
1 wk ago -
Forum Thread:
Cant Login to Live Persistant Mood
1
Replies
1 wk ago -
Forum Thread:
Kali Wont Start, Stuck at Kali Login:
20
Replies
1 wk ago -
Forum Thread:
I Wan't to Learn Pentesting, and Planning to Learn Both C++ and Python. But I'm Not Sure About What I Should Start With?
2
Replies
2 wks ago -
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
8
Replies
2 wks ago -
Forum Thread:
Hack Instagram Account Using BruteForce
193
Replies
2 wks ago -
Forum Thread:
Create and Use Android/Meterpreter/reverse_tcp APK with Msfvenom?
117
Replies
3 wks ago -
Forum Thread:
How Do I Access Different Directories Within Android via Meterpreter
5
Replies
3 wks ago
-
How To:
Install Kali Linux as a Portable Live USB for Pen-Testing & Hacking on Any Computer
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
How To:
Write Your Own Subdomain Enumeration Script for Better Recon
-
How To:
Phish for Social Media & Other Account Passwords with BlackEye
-
How to Hack Wi-Fi:
Stealing Wi-Fi Passwords with an Evil Twin Attack
-
How To:
Brute-Force Nearly Any Website Login with Hatch
-
How To:
Protect Your Browsing with This 10-Year VPN Subscription
-
How To:
Hack Android Using Kali (Remotely)
-
How To:
Phish Social Media Sites with SocialFish
-
How To:
Hack WiFi Using a WPS Pixie Dust Attack
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
How to Hack Wi-Fi:
Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
-
Hack Like a Pro:
How to Crack Passwords, Part 4 (Creating a Custom Wordlist with Crunch)
-
How To:
Set Up a Headless Raspberry Pi Hacking Platform Running Kali Linux
-
Hack Like a Pro:
How to Crack Online Web Form Passwords with THC-Hydra & Burp Suite
-
How To:
Write an XSS Cookie Stealer in JavaScript to Steal Passwords
-
How To:
Build a Beginner Hacking Kit with the Raspberry Pi 3 Model B+
-
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
2 Responses
You can take a look to the code of UPX . It is a packer, but the principle is the same (run-time unzip pretty much the same than run-time decrypt). Maybe somebody else can give you better pointers specifically for Windows.
You can also take a look to this very basic article for the overall idea on how they work. It targets ELF format for Linux though.
For Windows the executable format is called PE . I bet it would be pretty much the same thing but I had never played with PE so I cannot say for sure.
Good Luck
Thank you, I'll give it a shot
Share Your Thoughts