EliteForum Marketplace General Marketplace Discussion
0-day Exploit - Chrome - Current Version September 2020

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Thread Modes
0-day Exploit - Chrome - Current Version September 2020
Escobar Offline
plata o plomo!
*******
Administrators
Posts: 36
Threads: 19
Joined: Jun 2020
Reputation: 7

Elite AwardRichy-Rick!Bug-FinderPrescribed
#1
09-16-2020, 08:47 PM (This post was last modified: 09-16-2020, 08:48 PM by Escobar.)
This is a waterhole-style injection, jquery and executable are injected to the main frame.
Google confirmed there was a zero-day vulnerability, but did not patch this one up.

The payload is downloaded as described before as an encrypted binary, After decryption,
the malware module is dropped as updata.exe to disk and executed.
For persistence the malware installs tasks in Windows Task Scheduler.

This also has a melting element to it, where it is virtually impossible to find the final file
after execution, and thus far it has yielded good results and has not been flagged as
any false negative/positives by any malware program.

Demonstration has been given, there are 2 exploits combined in this, also a side-note
covering outlook's new merged system which can be exploited for @Hotmail and @live
emails. This won't be patched any time soon, seeing as they over-looked it several times.

Prices are ranging from 25-30 BTC for this, and I have consulted 1 team in details,
but they have a purpose to patch this and make statistical patch-reports, I wish this
to stay open.

PM me if interested.
[Image: dDT1QBf.png]
Reply
Maurice Offline
Elite VIP Member!
****
Elite VIP
Posts: 8
Threads: 4
Joined: Aug 2020
Reputation: 7

Elite Award
#2
09-16-2020, 08:55 PM
Thank you for briefing me about this. I do appreciate the presentation, and I am interested in the method to recover emails,
as I have a big budget for this if you could provide that. I know it is not just used for that, but it would make me able to get
a lot of BTC, perhaps a double the budget you are given by the team.

Let me know if this is something you would work with me on, I would be able to do 5 BTC upfront, and more after.
[Image: qcPCeqN.gif]
Reply
Escobar Offline
plata o plomo!
*******
Administrators
Posts: 36
Threads: 19
Joined: Jun 2020
Reputation: 7

Elite AwardRichy-Rick!Bug-FinderPrescribed
#3
09-16-2020, 09:10 PM
(09-16-2020, 08:55 PM)Maurice Wrote: Thank you for briefing me about this. I do appreciate the presentation, and I am interested in the method to recover emails,
as I have a big budget for this if you could provide that. I know it is not just used for that, but it would make me able to get
a lot of BTC, perhaps a double the budget you are given by the team.

Let me know if this is something you would work with me on, I would be able to do 5 BTC upfront, and more after.

Contact me through discord, we can speak there. I appreciate the offer, but it would be somewhat a waste to use it strictly for that,but I appreciate your transparency.
[Image: dDT1QBf.png]
Reply
Brute Offline
Junior Member
**
Posts: 4
Threads: 1
Joined: Sep 2020
Reputation: 0
#4
09-16-2020, 09:13 PM
I am also interested in this for similar reasons like Maurice, I have a Hotmail, if I had access to it, I could share the profit.

I sent you my discord, add me there as I have some things I want to ask you before I would make my decision.
Reply
Escobar Offline
plata o plomo!
*******
Administrators
Posts: 36
Threads: 19
Joined: Jun 2020
Reputation: 7

Elite AwardRichy-Rick!Bug-FinderPrescribed
#5
09-17-2020, 06:45 AM
(09-16-2020, 09:13 PM)Brute Wrote: I am also interested in this for similar reasons like Maurice, I have a Hotmail, if I had access to it, I could share the profit.

I sent you my discord, add me there as I have some things I want to ask you before I would make my decision.
I messaged you my Discord.
[Image: dDT1QBf.png]
Reply


Forum Jump:


Users browsing this thread: 3 Guest(s)