Convert .EXE to IMAGE!
ฝัง
- เผยแพร่เมื่อ 16 พ.ค. 2024
- • Educational Purposes Only •
» Skool Community: www.skool.com/anonymous-9484
» GitHub: github.com/EbolaMan-YT
» Patreon: / ebolaman
TIMESTAMPS:
0:00 Intro
0:15 Changing Icon
0:49 Binding Image & Exe
1:40 File Extension Spoof #1
2:12 File Extension Spoof #2
3:07 File Extension Spoof #3
4:48 IMPORTANT
webhook.exe is just a placeholder (so i dont get banned), you can use the methods in this video with a token logger, rat, etc
very *Educational Purposes
you do realize computer hacking is very illegal
have how send the code of the weehook.exe
@@The_Wafool "hacking" is not the same as "stealing people's data and damaging property". So no, hacking is not illegal. What is illegal is using means of hacking to commit actual crimes like stealing, harassing, damaging property, etc. In the same way that teaching people how to pick locks is not illegal either.
Though, in many situations, people may state that "hacking" IS "stealing data" as an over simplification of the word. This over simplification causes confusion and makes people think that Hacking is (and can only be) the act of breaking security for the purpose of stealing (and other crimes), but you can hack without causing damage to anyone. Hacking is simply the act of bypassing of security measures, or breaking some other system to gain access or priveledges. But if you have been given permission by the right people to have such access or priveledges, then it's not illegal.
And spreading awareness of computer security flaws, like how @ebolaman_ has done here, helps everyone to know how to protect themselves against these exploits. If this was not shown here, it will still be shown in other places where actual criminals hang out. Showing these security flaws can even lead to an eventual patch of the flaws. So keeping this information secret can be more dangerous to everyone.
@@The_Wafoolno way, its very much legal man what are you talking about?
Educational purposes is pretty much the universal dev excuse now
I guess it is the same for nudity counting as art.
@@F1L337t w i t c h
Not really, he showed us how is it made so now we're aware how to be careful in case of sus file
it is educational init
I have soo many *educational purpose* ideas!!!🤣🤣
That right to left override character in the filename was absolutely devious
The RLO trick is actually something I didn't know even as a CS student, thanks!
this is old one, if you do this, even Window Defender can catch this, it automatically consider the file as a trojan even when it's not harmful (test file)
@@catorlife can confirm, it's been like this for a while now
The name will go back to it's original form once you upload it somewhere, so not useful even if the target has no antivirus
there are file managers that separate extension from rest of name like double commander
Wow even as a CS student ? Xdd
.scr is an shortcut for screensaver executables. It's exactly the same as normal executables, but isn't .exe.
EDIT: Also, it's better to change the shortcut executable to "cmd.exe /c .\image.png", because when you leave the full path (c:\users\boris\...), it only supports your location of the folder with your username. But still, good video.
True but you're sending it to someone else anyways
Wtf .scr is 'script' not 'screenshare'
@@andrey_sviridov it's Screensaver
@@andrey_sviridoveveryone is wrong it’s screen saver😂
@@Meletion1 yeah, that too. I have bubbles.scr installed as my Win11 screensaver :)
the phrase educational purposes only is the one thing keeping this channel from not being cancalled
He hasnt done anything illegal.
Bro you literally got the the info i was finding for 2 years
I was tryna find this for so long and this was here the whole time????
frr
The question is whether windows defender detects it as malicious? Or does it depends upton the the exe that is being executed.
Shit I was doing 25 years ago
@@TeeChemist dumbass alert someone ban this kid
Good video. Knowing how to do dangerous things helps in defending against them. For example, to defend yourself against this, use a custom system icon pack and disable thumbnails. No antivirus needed or keeping your eyes peeled for extensions. Also, your default icons look cooler.
Could you tell that how do you switch to a custom system pack and disable thumbnails
@@Cryptocurrency69 ask Google
@@Cryptocurrency69 Both answers depend on your operating system. You'll have to ask mama Google.
Its just wow 🤯
So nicely explained straight to the point!
instructions unclear:
Im in the prison cell and re-watching this video
Damn its very rare that i find interesting channels ln TH-cam
Slick demonstration man! It was fun to finally know how do they do this
that's really cool! im not interested in doing this but i like the style of your videos and your explanation. Subbed.
appreciate it man
keep up the good work
RLO is already detected by most AV's
.scr is also detected by most AV's now and will be stopped by WD smart screen.
the .lnk method works but will be caught by behavior dynamic analysis which most AV's have.
double masquerade extensions will also be caught and stopped by smartscreen.
Is Windows Defender included in "most AV's"?
@@phir9255probably yeah wd is the most annoying av because it just does to much I don't have it because it even blocks my work
@@phir9255windows defender is an AV (anti-virus software) preloaded with the windows OS
@@phir9255likely
@@phir9255 considering windows defender is default installed on all windows operating system, then yes it would be considered part of “Most AV’s”
This is scary simple. I don't know if I am suppose to be scared or surprised.
you can check the file extension and size when downloading files
both
Have you watched the entire video? because it can look like a png or whatever file and still run as a cmd. @@kamimatsuyama
the RLO method doesn't work after uploading a file to 99.9% of file hosts online. you shouldn't be scared. if you're skeptical, you can always just right click and check the properties
thank you for this tutorial ebola man
mixing this with being able to view other desktops and holy hell you're goated
You can embed code inside an LNK file, and have the link file run it, so you could also fit an image inside an LNK and do it that way!
this is very improtant not for scamming but for being aware so its very important also this teaches u that the best antivirus is you
cool old techniques you covered
Keep it up man! That's awesome
i admit. i have been pwned by this in the past. it's such a good method
what a legendary mic stand
damn it, the RLO trick is quite surprising, for things like this you just better drag the file to the image editor
fun fact: there is no educational use for thst
I am taking Cybersecurity as a trade, this is educational to me.
:D
I remember this video
Cant wait to use this for educational perpousus only!
underrated content creator
i love this man
My man earned a subscriber
TYSM (btw where do you find all this stuff)
educational purpose only. Enjoy 💀
The fact that Windows lets you use the RLO in filenames and it actually works is crazy. They didn't think at all about how this could be used, or they did but didn't care. There should be some kind of indication of every type of character in a filename, be that a color change on reversed text or whatever.
What about Arabs and Asians, millions would be pissed about having to type their filenames in reverse
i appriciate youre videos i love all of them
Fantastic video
The amount of people who think that clicking the image sent on discord will execute it is hilarious
Wasn't there an exploit that basically did that?
They just send the embed from a other device once they click the image it’s all a scam
@@pinguluk1 no that’s not possible because of how discord works. When you send an image, discord harvests that information and displays the image, more or less like a middleman, in other words it’s literally just an image, you can’t hide executables in it.
thats why you only look at the embed
@@pinguluk1 yeah there somewhat was. for others in the replies: .WebP (note; webp wasn't the only thing that was exploited nor was it only discord related but its the one with most information.)
casualy doing gods work
Esto podría ser bastante útil algún dia en el sentido "educativo"
I subscribed right at.... you know. The one nobody buys. I totally never bought this program but damn if it doesnt seem to always be activated. Crazy.
This is getting out of hands
Thank you tho
Now I'm scared for images. Luckily I'm on linux so no exe's, but still scary to think how easy it is to hide the real file extension
So ANY image on discord could be laced like this??? Wtf how do you even stay safe from this? Idk how to work linux
@@dayymhotUploaded images with machine code execution will get rejected because they're not REALLY images; The headers and offsets are wildly different and be considered corrupt or invalid. You only need to worry about fake 'images' stored directly on your file system, and make sure not to run them.
Also the reversed text trick used to spoof the file format works only on explorer and a gew other programs, in the most of apps this trick won't work and the original file format will be shown
"linux is free if your time is worthless" proceeds to get hacked by an image
@@CluelessGeekthis was the cause by my change to dual boot windows/linux to just linux 😅
thanks ebola man, very cool 👍
u a w fr fr love u bro
ngl thats actually so smart omg
Thank you ebola man
I'm like a lot of people here I'm like a lot of people here who are really scared if youtube bans you. Your knowledge is amazingwho are really scared if youtube bans you.
DUDE YOU ARE THE REAL G OMG
Very helpful ! Thank you
One day bro is gonna hack the NASA and say that it was only for educational purpose
You know wayyyy to much! this is crazy thanks
Thank you, from now I can easily steal from everyone's computers information about them. Can't wait for new video about IP addresses and other things.
Bro u are legend 😂❤
beautiful stuff here
Oh im gonna enjoy this alright
bro is a prodigy
Thanks ebola man!
This is very interesting. Might use it against scammers
an angel omfg
really good bro
I'm impressed by RLO, I didn't know.
Love some good bass boosted Xenogenesis by TheFatRat
first part was useful, thanks
That is terrifying! But so smart 🤯!
Really cool! More videos!!
Okay this is cool and all,
Now show us how to counter/detect all of the aforementioned funny things, that'd be even cooler
Second that
the antivirus can do all that
Awesome content.
the RLO trick is not gonna work since even Window Defender can catch this, it automatically consider the file as a trojan even when it's not harmful (test file)
Yeah this isn't actually a danger to anyone. The only reason windows isn't freaking out about the file is because it was made on his computer. If you were to upload that to the Internet and try running it on another computer it'd get instantly sent to the shadow realm by even the worst of anti viruses
@@smoothbraindetainer I tried making my own, and Windows Defender successfully stopped it from executing. Maybe the video uploader disabled Defender for the sake of the demonstration?
@@Lar_me yes exactly my point, even the crappiest of antivirus programs would catch this low-level bug
That grassy hill image was taken in Sonoma County, California, where I grew up.
Good to know nothing is safe. I knew there was a way to do this with pdfs, but I didn't think about hazardous png files.
hello do you know how to make a hwid spoofer? been watching these videos and tryna make one using the multi tool method as well.
WHOWWWWWW! Amazing!
this is good
Love ur vids
that's crazy !
technically, you can go deeper with shortcut method without spoiling hidden file but it's gonna be multi-task command for cmd
very good men
Dangggggggg, That's insane.
I’m literally working on defense against file extensions and file uploads right now… gonna see if spoofed files get through what I wrote.
you should show people how to detect these files
Shortcuts are one of the more unsafe things in Windows. Even with applocker rules and execution policies, shortcuts can run powershell which in turn can run more or less everything
I have a website dedicated for prancing coworkers which requires being able to run my pranks with zero/nobody permissions. And shortcuts have been my saviour for the last project I’ve done😅
Thats why I always use the “show file extension names” option
doesnt save you buddy
bro's channel is surviving with the educational purposes excuse
Ebola man!
Good luck, brother. I can embed Payload in PNG format, not Android
i'm torn over liking this for the educational purpose but also not liking so less people use this maliciously. nice explanation tho, kinda scary
Imagine doing this in school 😭💀
this is insane, I better be careful with downloaded images from now on 💀
Same here
Same here
the RLO method doesn't work after uploading a file to 99.9% of file hosts online. you shouldn't be scared. if you're skeptical, you can always just right click and check the properties
Nice vidz do more
Before from 20 years I think there was application called illmerger do the same changing extension and merge
But I searched for it not found now🤯
The last cmd idea was cool and new
thats op this could get in the wrong hands
fire
nice dude, next turorial: how to empty someone bank account (just educational)
TYSM!
great nice video can i see the other screen from a distance from another user to see whats he doing? with sessionsploit
or search another pc mac
Man i remember doing this in like 2001
Old person.
I wasn't even born yet lmao. You're awesome 😎💯
Yes thats what i says its too old 😂😂
Skid material
We don't need more 15 year olds roaming around discord sending malicious files to other kids
i’m literally a professional skid
@@ebolaman_ lol, why not progress deeper tho?
@@htgg9006 what makes you think he hasnt
the only thing skid here is the skidmarks in ur underwear bro
@@beamsandshits your channel is literally roblox exploits, why you bein a kid instead of doing real sh*t? No need to get mad but if you're into cyber do it all the way and not like a clown
This can be both life saver and life ruiner💀
Very cool
bro is in the hamza server w
Proud to be a thiojoe watcher