Navigation X
ALERT
Click here to register with a few steps and explore all our cool stuff we have to offer!



   554

BTC Clipper (BE CAREFUL)

by ethanperrine - 29 November, 2021 - 09:55 PM
This post is by a banned member (ethanperrine) - Unhide
ethanperrine  
Supreme
77
Posts
12
Threads
5 Years of service
#1
OP 29 November, 2021 - 09:55 PM
Thursday 11/25/2021, I downloaded a program called TSP DorkGen V15 and it contained a BTC clipper, and thankfully I noticed. Making this thread so yall could be informed and to stay safe. (I TSP in sandboxed, but the clipper somehow escaped).


Clipper Details -
Command line of the clipper: "C:\Windows\IMF\Runtime Explorer.exe"
Current Directory: C:\Sandbox\User\DefaultBox\drive\C\Windows\IMF\
PEB address: 0x32e000 (32-bit: 0x32f000)
Parent Process: Windows Services.exe (58796)
It runs as a unverified version of a Microsoft Windows Process
Be careful, Stay safe.
Buy Swiss Army Suite!
[Image: debeli_gmaz_1.gif]
This post is by a banned member (mcr) - Unhide
This post is by a banned member (Spooky) - Unhide
Spooky  
Godlike
2.164
Posts
795
Threads
5 Years of service
#3
06 December, 2021 - 05:32 PM
[font]Clipboards go over Sandboxes, thats why you can copy something on ur main pc and paste in ur VM.
So it didn't really get on ur pc, its just connected.[/font]
#1 AGED ACCOUNTS
AMAZON TARGET WALMART
[Image: optisiggy2big.gif]
This post is by a banned member (pruned) - Unhide
pruned  
Godlike
841
Posts
132
Threads
5 Years of service
#4
06 December, 2021 - 06:22 PM
(29 November, 2021 - 09:55 PM)ethanperrine Wrote: Show More
Thursday 11/25/2021, I downloaded a program called TSP DorkGen V15 and it contained a BTC clipper, and thankfully I noticed. Making this thread so yall could be informed and to stay safe. (I TSP in sandboxed, but the clipper somehow escaped).


Clipper Details -
Command line of the clipper: "C:\Windows\IMF\Runtime Explorer.exe"
Current Directory: C:\Sandbox\User\DefaultBox\drive\C\Windows\IMF\
PEB address: 0x32e000 (32-bit: 0x32f000)
Parent Process: Windows Services.exe (58796)
It runs as a unverified version of a Microsoft Windows Process
Be careful, Stay safe.

yes there are a lot thats hwy u need a VM
Thanks Everyone  for Rep+ and Like

[Image: GQvTjMu.gif]  Fake Traffic to Earn Money [Image: GQvTjMu.gif]
Pruned#4956 

Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
 or
Sign in
Already have an account? Sign in here.


Forum Jump:


Users browsing this thread: 1 Guest(s)

About Cracked.sh

Cracked.sh is a community forum that suits basically everyone. We provide cracking tutorials, tools, leaks, marketplace and much more stuff! You can also learn many things here, meet new friends and have a lot of fun!
If you would like to contact us, you can send our staff team a message.

Navigation

Extras

Help

Account