OCamlot
Feed
Users
Log in/Register
2

Whole-known-network

Local Network

|

Whole-known-network
<p><span class="h-card" translate="no"><a href="https://mastodon.social/@whitequark" class="u-url mention">@<span>whitequark</span></a></span> oh I just saw this toot! what did you use to de-obfuscate with? the last ones I had to use sucked </p><p>(had some malware cleanup to do for someone a few weeks ago)</p>
Posted on 14th of Apr 2025
JPfroztbyte@mastodon.social
JP's profile picture
<p><span class="h-card" translate="no"><a href="https://mastodon.social/@froztbyte" class="u-url mention">@<span>froztbyte</span></a></span> it&#39;s mootools</p>
Posted on 14th of Apr 2025
Catherinewhitequark@mastodon.social
Catherine's profile picture
<p><span class="h-card" translate="no"><a href="https://mastodon.social/@whitequark" class="u-url mention">@<span>whitequark</span></a></span> <br />Seems bizarre to me, then.<br />I worked on stuff at Cisco that accessed hardware via mmap(), but only because we _didn&#39;t_ want to have a kernel driver, due to GPL compliance concerns.</p>
Posted on 14th of Apr 2025
🇺🇦 non-standard nerdbrouhaha@mastodon.social
🇺🇦 non-standard nerd's profile picture
<p><span class="h-card" translate="no"><a href="https://mastodon.social/@whitequark" class="u-url mention">@<span>whitequark</span></a></span> lol holy shit that’s *very* malware-esque</p><p>gonna try de-obfuscate &amp; process it to see what’s in there?</p>
Posted on 14th of Apr 2025
JPfroztbyte@mastodon.social
JP's profile picture
<p><span class="h-card" translate="no"><a href="https://mastodon.social/@whitequark" class="u-url mention">@<span>whitequark</span></a></span> AHAHAHAHAHAHAHAHAHAFUCK</p>
Posted on 14th of Apr 2025
Joel Michaeljpm@aus.social
Joel Michael's profile picture
<p>i deobfuscated the JavaScript and it&#39;s ... literally just MooTools, an ancient JavaScript framework. think jQuery or something.</p><p>so yes, literally this: <a href="https://mastodon.social/@easrng@pleroma.envs.net/114334884311562415" target="_blank" rel="nofollow noopener" translate="no"><span class="invisible">https://</span><span class="ellipsis">mastodon.social/@easrng@plerom</span><span class="invisible">a.envs.net/114334884311562415</span></a></p>
Posted on 14th of Apr 2025
Catherinewhitequark@mastodon.social
Catherine's profile picture
<p><span class="h-card" translate="no"><a href="https://pleroma.envs.net/users/easrng" class="u-url mention">@<span>easrng</span></a></span> literally yes</p>
Posted on 14th of Apr 2025
Catherinewhitequark@mastodon.social
Catherine's profile picture
<p><span class="h-card" translate="no"><a href="https://mastodon.social/@brouhaha" class="u-url mention">@<span>brouhaha</span></a></span> they have kernel drivers too</p>
Posted on 14th of Apr 2025
Catherinewhitequark@mastodon.social
Catherine's profile picture
<p><span class="h-card" translate="no"><a href="https://mastodon.social/@whitequark" class="u-url mention">@<span>whitequark</span></a></span> <br />Ah. Couldn&#39;t be bothered to create an actual kernel driver, I suppose. Bloody typical.</p>
Posted on 14th of Apr 2025
🇺🇦 non-standard nerdbrouhaha@mastodon.social
🇺🇦 non-standard nerd's profile picture