Navigation X
ALERT
Click here to register with a few steps and explore all our cool stuff we have to offer!



 3403

MALIFY VIRUS - DO NOT DOWNLOAD

by oxcy - 10 November, 2022 - 02:00 AM
This post is by a banned member (egirl) - Unhide
This post is by a banned member (SekhmetRa) - Unhide
This post is by a banned member (oxcy) - Unhide
This post is by a banned member (LateNightVibe) - Unhide
LateNightVibe  
Infinity
289
Posts
116
Threads
4 Years of service
#20
16 February, 2023 - 07:39 AM
(10 November, 2022 - 02:00 AM)oxcy Wrote: Show More
Recently I have been using tools from this forum and I have come across some things.

There have been some malicious exe files being spread and I am here to let everyone know, so admins please do not delete this post.

Malify https://cracked.io/Thread-✨MAILIFY✨-MAIL...R-AIO-TOOL

I am almost 99% positive that Malify is a virus. 

I aswell as some others have used programs to see, there are some HTTP requests that are happening when malify is closed. I will show below

"Mailify.exe" touched file "%WINDIR%\Microsoft.NET\Framework\v1.0.3705\clr.dll"
"Mailify.exe" touched file "%WINDIR%\Microsoft.NET\Framework\v1.0.3705\mscorwks.dll"
"Mailify.exe" touched file "%WINDIR%\Microsoft.NET\Framework\v1.1.4322\clr.dll"
"Mailify.exe" touched file "%WINDIR%\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll"
"Mailify.exe" touched file "%WINDIR%\Microsoft.NET\Framework\v2.0.50727\clr.dll"

\ThemeApiPort"

With Malify not running, there should be nothing running.

%WINDIR%\assembly\NativeImages_v4.0.30319_32\Mailify\*
%WINDIR%\assembly\NativeImages_v4.0.30319_32\mscorlib\*
%WINDIR%\assembly\NativeImages_v4.0.30319_32\System.Configuration\*
%WINDIR%\assembly\NativeImages_v4.0.30319_32\System.Core\*
%WINDIR%\assembly\NativeImages_v4.0.30319_32\System.Drawing\*
%WINDIR%\assembly\NativeImages_v4.0.30319_32\System.Serv759bfb78#\*
%WINDIR%\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\*
%WINDIR%\assembly\NativeImages_v4.0.30319_32\System.Xml\*
%WINDIR%\assembly\NativeImages_v4.0.30319_32\System\*


I would advise you to delete it immediately, as you will have you crypto stolen as I have

Here is proof of money leaving my wallet, with a note "Sorry" in Russian.
https://imgur.com/a/KCDclYh


If we follow the ether scan, we can see that it was sent to this address.
https://imgur.com/a/qT0NUty

If we follow that address, we can see that it is automatically wired to another address. 
https://imgur.com/a/eQvTa7R

This address has over 59k in it as of RIGHT NOW with CONSTANT money coming in.
https://imgur.com/a/3UClnXS

I can guarantee you that this is a virus and should not be used.

pretty scary that is still undetected by the best antivirus


 
This post is by a banned member (hrthrthy) - Unhide
hrthrthy  
Registered
55
Posts
0
Threads
1 Year of service
#21
23 April, 2023 - 07:21 AM
tjtj
This post is by a banned member (Yoboi) - Unhide
Yoboi  
Supreme
120
Posts
6
Threads
Deal With Caution!
4 Years of service
#22
18 January, 2024 - 12:00 AM
Sorry for your loss.

Never use random exes on your personal pc.

Either run it in a sandboxed environment or build it yourself

Mailify source is on github
NO TELEGRAM/DISCORD

Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
 or
Sign in
Already have an account? Sign in here.


Forum Jump:


Users browsing this thread: 1 Guest(s)

About Cracked.io

Cracked.io is a community forum that suits basically everyone. We provide cracking tutorials, tools, leaks, marketplace and much more stuff! You can also learn many things here, meet new friends and have a lot of fun!
If you would like to contact us, you can send our staff team a message.

Navigation

Extras

Help

Account