Create an account

Very important

  • To access the important data of the forums, you must be active in each forum and especially in the leaks and database leaks section, send data and after sending the data and activity, data and important content will be opened and visible for you.
  • You will only see chat messages from people who are at or below your level.
  • More than 500,000 database leaks and millions of account leaks are waiting for you, so access and view with more activity.
  • Many important data are inactive and inaccessible for you, so open them with activity. (This will be done automatically)

0Day Forums Leaks Cracked Programs Lime Crypter v3.1 [Crypter / Binder] (Open Source)

Thread Rating:
  • 372 Vote(s) - 3.55 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Options
Lime Crypter v3.1 [Crypter / Binder] (Open Source)

Offline nathanielksnxnmwrv


Valued member
***
Valued member
Posts: 0
Threads: 0
Joined: Jul 2022
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#1
10-29-2018, 04:47 PM
An obfuscation tool for .Net + Native files. Applying some evasion techniques to bypass anti-virus software and install a persistence in the machine. Also, the output payload can be binded with a legit application while it bytes are being injected to legit process as well.
Main Features:
•.NET - Coded in Visual Basic .NET, required framework 4.0 dependency.
•USG - Adding some junk methods and rename all variables
•Injection - Hide payload behind a legit process
•Anti Virtual Machines - Uninstall itself if the machine is virtual to avoid scanning or analyzing

[Image: iMcfDdr.png]
--------------------------------------------------------------------------------------------------------------------
[Image: 76CoInF.png]_[Image: 2usZzEJ.png]
--------------------------------------------------------------------------------------------------------------------
[Image: KF2k9w6.png]_[Image: XqfPJMF.png]
--------------------------------------------------------------------------------------------------------------------
Before crypt of a Orcus client file with 'Lime Crypter 3.1'.
[Image: mpxS440.png]
Proof:

[To see links please register here]



After crypt of a Orcus client file with 'Lime Crypter 3.1'.
[Image: vbrCn0r.png]
Proof:

[To see links please register here]



Virustotal:

[To see links please register here]

--MD5: "ced45f6998154c48d72f053029ecbfc7"

[To see links please register here]

--MD5: "9778a191ab6550b5415c596d1f41d8e1"
Download:

[To see links please register here]

Reply

Offline nematelminth574626


Member
*
Member
Posts: 0
Threads: 0
Joined: Jun 2017
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#2
10-30-2018, 01:54 AM
Even after crypting the file, the detections are quite high. Nonetheless, given It's open-source, It's worthy of analyzing.

I like the following features:
•Injection - Hide payload behind a legit process.
•Anti Virtual Machines.

Appreciate It.
Reply

Offline Sirsextipartition651


Member
*
Member
Posts: 0
Threads: 0
Joined: Feb 2017
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#3
03-10-2022, 03:11 PM
ty for sharing mate i realynedthisman
Reply

Offline conjoining532041


Member
*
Member
Posts: 0
Threads: 0
Joined: Jan 2021
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#4
08-19-2022, 12:50 AM
Quote:(10-30-2018, 04:22 AM)mothered Wrote:

[To see links please register here]

Even after crypting the file, the detections are quite high. Nonetheless, given It's open-source, It's worthy of analyzing.

I like the following features:
•Injection - Hide payload behind a legit process.
•Anti Virtual Machines.

Appreciate It.
Very clearly for me.
Reply

Offline crenulated967128


Member
*
Member
Posts: 0
Threads: 0
Joined: Jan 2022
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#5
11-05-2022, 09:21 AM
Thanks for the source. Hopefully it won't be that hard to UD it again for windows defender.

The files are deleted from Github.
Reply

« Next Oldest
Next Newest »


Forum Jump:


Users browsing this thread:
1 Guest(s)

©0Day  2016 - 2023 | All Rights Reserved.  Made with    for the community. Connected through