Thread Rating:
  • 2 Vote(s) - 5 Average
  • 1
  • 2
  • 3
  • 4
  • 5
How to decrypt phishers
#21
(10-10-2009, 08:05 PM)Dingo_Dog Wrote: Thanks for the tut man. Looks great, hopefully I can give people their accounts back.

How? The emails would only contain information that the original owner already knows.

The best thing to do is to just delete the email account.
[Image: MreGSXsigcopy.png]

Reply
#22
(10-10-2009, 08:06 PM)MreGSX Wrote: How? The emails would only contain information that the original owner already knows.

The best thing to do is to just delete the email account.

I was sort of thinking if it was an offline Facebook Phisher or Hotmail Phisher, just advise the victims to change their passwords. Because if this way of reverting is quite popular then everyone would do it, and then start taking off passwords. But yeah, just deleting would be better Tongue
[Image: Dingo_Dog.jpg]
Reply
#23
yea but, that involves running it unless sandboxie, if u run it without it im pretty sure its binded with malware
Reply
#24
(10-10-2009, 08:06 PM)MreGSX Wrote: How? The emails would only contain information that the original owner already knows.

The best thing to do is to just delete the email account.

Actually you can try see if the pass word is the same as youtube, so in the description you could say to stop downloading this for their own good or whatever you want to say.


(10-10-2009, 08:32 PM)HuNt3R Wrote: yea but, that involves running it unless sandboxie, if u run it without it im pretty sure its binded with malware

You don't actually run it with sandboxie all the time if you know what it is just open it with String Stealer, but don't open the program at all. If is a keylogger I'm sure your AV will detect it as soon you extract it.
[Image: mynewsig.jpg]

Want to know how to stop offline Phisher for good, well click here
Reply
#25
Seen something simular before, not a bad tutorial. Wireshark is good to use aswell.
Whats a good deassembler for Linux?
[PM me one]
[Image: jcXtui.png]
Reply
#26
Check it out there are some good disassemblers for Linux
http://en.wikibooks.org/wiki/X86_Disasse...ecompilers
[Image: mynewsig.jpg]

Want to know how to stop offline Phisher for good, well click here
Reply
#27
I tried it out on a keylogger, and I couldn't find the email even after i read EVERYTHING. But if I open in wordpad and shazam right there at the bottom lmfao
Reply
#28
(10-11-2009, 06:54 PM)BlizzStaff Wrote: I tried it out on a keylogger, and I couldn't find the email even after i read EVERYTHING. But if I open in wordpad and shazam right there at the bottom lmfao

I've had that happen before.
[Image: MreGSXsigcopy.png]

Reply
#29
Another way of doing this is by uploading the program to novirusthanks, then clicking "View ASCII strings".
Reply
#30
(10-11-2009, 07:54 PM)Elektrisk Wrote: Another way of doing this is by uploading the program to novirusthanks, then clicking "View ASCII strings".

Yea is true, but I prefer doing it this way :p. Thanks for the tip Elektrisk
[Image: mynewsig.jpg]

Want to know how to stop offline Phisher for good, well click here
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Guide: Be Aware From Phishers Liberty 0 1,018 10-08-2009, 07:11 PM
Last Post: Liberty

Forum Jump:


Users browsing this thread: 6 Guest(s)