[Idea] Keylog Goldselling operators

[[Kronus]]

THIS THREAD IS A BRANCH OFF OF L3G1T's THREAD THAT CAN BE FOUND HERE

I noticed that almost every gold selling site that has a live support button uses a website known as ProvideSupport.com

I thought about L3G1T's idea and came up with this:

You add a rat or keylogger to a file and send it to the operator on the live support. If you're lucky he will open the file. Supposedly there is a rat that you can extract to .txt files which could have your "Order ID/etc" which is much more believable than an exe.

So if the rat goes through, wait till you have their Login info for providesupport.

They will probably log in using the Standalone Operator Console:


Now if they have the remember password checked you will have to wait for them to log into their email or find another victim.

Now here's where i'm stumped. You have access to their account, but i need to know how they contact their boss. If it is via the console, then your in perfect shape, but if not what do they do? I thought. Why not look in the keylogger or rat to see if they contacted them in anyway and how they did it.

But right here is an option to contact or "call" other operators. Now, im wondering if the "boss" is one of them. AND as you can see in the picture it gives their emails too. So you could check if they have a wow account attached to that email by using the same password they use to log in here. Another option is to send them phishers, but there really is no point since you can just send them a rat.


Operator-to-Operator Chat

Initiate chats with other operators in separate chat rooms or invite other operators into your current room. This feature allows handling of complex requests or transferring of visitor calls.





So if you know how to contact the boss and what to say then you can tell the boss that john smith bought 20K gold on X server and he will send it to the server! Then you can do what you wish with the gold. Just think of how much gold you could get if this works...

If anyone has anything to add onto this idea or feedback, feel free to express your thoughts here.

[K A K A]

Looks pretty good. +rep if you could help me on something Add me via msn : [email protected]
Thanks

[Y R U A NUB ?]

What's peoples problems? When will everybody get to know that you CAN NOT bind any malware or anything to txt/mp3/jpg files and such. You can bind pictures and stuff to exe files but not not not not exe to that. Which means you can't open a txt/mp3/jpg and such and get infected with anything. The only chance would be if you found some exploit that would let you do it, which would take 120% skills, and if you did microsoft would get to know about it in 2 minutes and it would be fixed.

You can bind malware to like other exe's, scr files and some more.


Capiiiish.

Also, I've lost my counting of how many people have came up with this "idea" so far. It's common sense.
I'm not flaming by the way.

[[Kronus]]

Well what i do and what works really well. I bind PRO Rat to a .txt file. ( I paid for the binder) otherwise you can get some free binders that will bind to a .mp3 or something else. For me my pro rat is undetectable so once you SE it onto their computer you can inject files so you can corrupt entire networks of gold sellers or account buyers.

Just going off of this users experience. And i thought this was a variation and more in-depth but i guess its the same.

[wordboy]

The idea of scamming the goldsellers is hilarious to me. lol.

[thebigman]

I find it funny that you cannot open a document or picture with the said infection.

Why not? why can't you make the .exe hidden and have it run on startup of the picture? I have done it a few times I think. Just rename .exe to .jpg or something so they click it anyway.

[Y R U A NUB ?]

MMOwned are obviously not supposed to be dealing with keyloggers or remote administration tools. Please take a look at these links for example:

Forums > Bind Exe To A Jpg
http://www.opensc.ws/trojan-discussi...-exe-jpeg.html

And if you still claim that you uber hax please post a picture, mp3 or a txt which is infected with the jpg/mp3/txt extension.

[[Kronus]]

Thanks for the links. I was simply quoting what the poster said, i had no knowledge of the binding so that was my fault.

[Caliga]

I have an undetected rat, + i can bind it on everything, just how do i send them? give me a story please ?

[[Kronus]]

Haha i guess we have true hacker YRU. If you can bind that to a .txt then just say its the order id information with your name and everything then /send

[L3G1T]

Well I actually think this is a great idea, from the original idea that I had.

And, everyone keeps saying "z0mgzz this is like the 487893 post of this REPOST REPOST FLAMEz0RZ". As I've said before, show the damn link and quit saying the shit.

Anyways, I bet it's very possible to bind the rat, not so much a keylogger, but a rat to a .txt file, I've actually read binding it to a .MP3, have yet to google binding it to a .txt file though. But I'm sure there is a way.

Anyways, awesome idea horde +rep.

[L3G1T]

Alright so here is an update - (Chat Log of 1st attempt)

Welcome to our company website! We provide the lowest price and the best service。

Thanks for choosing us! E_mail[email protected]

rose 06-06 22:28:21

hi

rose 06-06 22:28:26

may i help u

You 06-06 22:29:23
yes, i had ordered a pl to be done, and it was about 2 or 3 days ago, and it's still on hold, can i show you the order details through here?

You 06-06 22:29:39
i need it to be done asap

rose 06-06 22:29:49

your order id plz

You 06-06 22:30:01
here

You 06-06 22:30:24
The file [Order Confirmation E-mail] is sent successfully

You 06-06 22:30:31
I will just send you the email i recieved.

rose 06-06 22:31:01

your wow account name plz

You 06-06 22:31:14
did you recieve the file?

You 06-06 22:31:40
it has all the information

rose 06-06 22:32:16

no ,nothing in it

You 06-06 22:34:45
oh sorry, one second, the e-mail wasn't even on it lol, here you go.

You 06-06 22:35:09
The file [Order Confirmation E-mail] is sent successfully

rose 06-06 22:35:20

ok

rose 06-06 22:35:41

sorry ,still nothing on it

You 06-06 22:36:38
what the hell, alright, well im at work, i will talk at you later with the information okay?

rose 06-06 22:37:09

ok

rose 06-06 22:37:11

thanks

rose 06-06 22:37:19

i will wait for u then

You 06-06 22:37:21
thanks rose

rose 06-06 22:37:25

have a nice day

rose 06-06 22:37:27

no prob

rose 06-06 22:37:30

bye

Now she actually opened the files I sent her, but for some reason my rat wasn't ****ing working, I don't know why, but trying to figure it out. But they will obviously open the file. Just have to make it sound legit. :yuck:

[[Kronus]]

Haha glad to know she opened it. Now once you get her information you should reclick the live support button and see who is hosting it and try to log in. Im going to look into rats aswell and tell you what i find.

[L3G1T]

Haha glad to know she opened it. Now once you get her information you should reclick the live support button and see who is hosting it and try to log in. Im going to look into rats aswell and tell you what i find.

Alright, btw I did find some tuts on how to make the .exe file into a .txt file, however. Most of them said to quit being a nubass and make your own Trojan code lol, too much work.:yuck:

[[Kronus]]

Yes im finding it very hard to get any websites or posts about binding a rat or keylogger to a txt...still searching.
Found a binder that binds jpg bats and mp3s.