Mail me stuff to build a computer out of! Or anything you would like me to install in my PC. (Future Video) Or send cool stuff, that's cool too. Mail to: Jay Avenian 2054 Kildaire Farm RD. #407 Cary, NC 27518 USA
I’ll mail you a bomb with a usb cable wired in. You must build the computer quickly in order to run the bomb defusing software and survive. Also I legally have to state that this is not a true statement.
I want to know what the point of this thing is? Usually a scam like this has something to gain for scammer. What are they gaining here? A couple of bucks? If they were aiming to just take your money, why not charge more? If the cheap price is just made as a way to sell them to chumps you'd think it'd do more than just delete files, like ransomware or a crypto miner or something. This is so confusing.
9:58 This actually is a real USB-Stick. It also has capacity. Probably around 4GB or maybe 8GB. This is a very typical design used in small USB-sticks. You could try flashing an original firmware on it. Take a look at the device managers properties for this stick and research the management chip of the stick. You can find the tools required for some sticks on the internet. Would be interesting to see what this stick actually is.
you should become a TH-camr that buys attack ini devices online like these (could be different) then reverse engineer (if that's what you's call it) the chip to see how it was produced and what's on it and how it works with a few tips and tricks on how to not be in that situation? Idk but if like to watch that
@@drcyb3r you're right you changed my perspective on this whole vid, he makes it out as the module is a flimsy bit of plastic but you can clearly see some kind of metal on it, I understand the flashing part good point out there too. but yeah damn I really thought this was a pretty nice video but was also sceptical on why this guy with a big exposed computer set up would get in a situation like that in the first place. Thanks for your time put into that
Would be interesting to reverse engineer the malware too. No need to reverse engineer the chip for this This is also the actual definition of a "virus", which destroys your computer with aboslutely no gain. Good malware developers try to not change the system too much and try to make money off you.
@@iUUkk There is no virus on the USB-drive. He just made it look like there is a virus. The nvidia driver is still in the downloads folder but nothing else is. Why should a virus not remove everything? It "removed" all other exe files but not that one?
@@drcyb3r sad thing is you can write script that just saves data somewhere else instead of the "usb drive" and make a real convincing product. Unfortunately the errors in the packaging just make it look worse like autocorrect exist
yeah the packages are easy to get to make it look more legit. the cable is really just a cheap 1-2 dollar ''gold plated'' durable cable. i worked IT after working at a sort of pawn shop? where we recycle shit. and the packages we got like this where trough the roof with sent back cables because owners didnt want them. the data is so slow on them.
And the "module" with no memory is a standard usb custom module for a bunch of thinner things. The problem is that the scammers probably chose to inject malware in the space and probably prefered to buy a 512KB module...
@Jays Tech Vault i do not believe that you are qualified to run a tech channel. please have more experience or take some classes before doing this. as for your questions. When you download a file from the internet, it does not copy directly to the disk u chose to save, it 1st downloads it to the temp folder of the windows drive then copies it to the folder u chose, the download starts ok coz its writing to the c drive. when the download ends, it tries to copy this file from c to the folder you chose but since there are no data module, the data can not be written and gone. As for the malware, i cant tell coz you did not post any pics or didnt zoom into the usb but it might have a small rom in the chipset. thats where malware is kept. and ur question how it shows 1.9tb if no storage inside... well, you can change stuff on the chipset of the usb to show fake TB. Really, please have more experience for running a tech channel.
@@psycheningnop, it was a actual system, but not his personal one, obviously, since he works with computers Virtual machines won't save you from that since it's plugged directly into your computer, so for testing crap like these you need another burner system
it is a piece of electronics, what the hell should get damaged if it isn't powered and you dry it off quick enough ? you can wash your freakin keyboard without anny problems in the dishwasher (if you dry them long enough afterwards) and it wont take anny damage. the only way electronics could be damaged by water is either by corosion or by beeing wet while they are powered.
@@Dennzer1 is that regulated by law like this? Ok fair point then, then you got to add protection circuitary and may coat it with such a regular water resistent spray coating if you had a pcb with circuitary on the outside (unlike the one in the vid) but that is not a lot of effort.
@@Em.P14 I am only saying, it is either water proof, or it isn't. If it is, you can dunk it in water and use it right afterwards. If it isn't, you can dunk it it water, only to have it not work right afterwards. I have no idea why you are talking about regulations right now.
@@Dennzer1 i didn't know the propper english therm to say what i wanted to, im not a native speaker after all, neither do i know how "waterproof" is exactly defined as manny people have different oppinions on it, there fore i wanted to know how it is defined by the law as it is the opinnion that counts.
Autorun files get around that. Same reason things will launch if you put a cd/dvd in. Him bring connected to a network could/may have infected anything on his connection. Not to mention if he had ANY info on that pc it is 100% auto sending that to the seller. Hope he didn't buy anything or log on to any websites, those keyloggers are mean too.
please read this guy's saying again then, its about "executable" virus can execute themself. Not about FTP exploits like wannacry did which can be occured remotely.
That's what I was hoping he would do too. 'lsblk', 'blkid' or /dev/disk would likely show it right off the bat. Since Linux doesn't just run random shit that people plug into a USB port, there should be no real risk in mounting it and looking at the files. But of course for safety I would do it from a chroot jail or live disk (with no drives mounted and network disabled).
@@krozareq Another option is to plug it into a linux guest VM with USB port mapped, but a live linux CD would be the best idea with all storage unplugged to be safe. I'd also like to see Jay do more tests. What I do not understand is what the scam is all about, the $3 at best would cover the costs of the device, no one is making any money, and no one is really loosing any money except pocket change. It has to be all about injecting the malware for gaining access to the PC, but it gives itself away by deleting files, it's just crazy to go through the trouble of making this thing for nothing.
the reason there’s no disc space is they can actually program the usb drive to say whatever space it holds even if it ACTUALLY holds nothing or even less then what is advertised.
@@yrly59e Na, that's re-usable, so that's for more "Covert" operations, aka the dreaded "In-laws" computer. Jks. In all seriousness if you have the urge to use this on your relatives then maybe you should join a different family, much less hassle in the long run. Also, at £2 a time VS £20 for a decent USB killer, you are getting more value with this. You get to make people suffer long term, and you get to reuse it after the malware has been removed. Aka, "The Circle of Life". Lol
His entire technical capability consists of being able to complete a purchase on eBay. Period. That is it. No sand boxing, no vm, no monitoring, no network segmentation, nothing. Just wow.
...Let alone that he has his infected PC networked. THAT just gave me the creeps. Also no "data modules"? Come...on... xD Sure, not everyone knows what a USB-Payload is and how malware is written ontop of it but ouch. This is a serious "Do not try at home" type of video o.o;
It's not a bad idea to set up a dedicated testing computer. Just make a disc image with the software you need, isolate the entire computer from your network and wipe the hard drive between tests. That's even safer than using a VM. Of course, if you can't do that for whatever reason, using a VM instead is a lot better than nothing. He was at least smart enough not to test this USB on his main computer, but it doesn't seem like he properly prepared his test computer, or had enough knowledge himself to properly explain what he was looking at. Those are huge mistakes when doing this kind of testing. But hopefully, no serious harm was done and he'll learn to do better in the future.
Lol yall do the most to bring down this guy. He's a kid, he's a kid in college. He's just having fun, and you're just being the weird neckbeard online trying to drag him down. Give him a break for fucks sake.
I almost bought one of these things a few years back, saw the reviews and some said its legit and showed pictures but the actual storage was just around 10gb of storage instead of a whole terabyte. Now that i know more about computer and tech stuff i can avoid these types of scams.
For $3, yes just 3 dollars! You not only get a terrific Gold Plated USB Stick Gem! fully loaded with lots of storage, but also our great little stick will automatically clean up your computer, at no extra charge to you. It is a gift that keeps on giving! Warning!!! do not connect this to a PC/Laptop! with anything that has content you would like to keep! doing so, could be fatal to data! LOL!
I encoutered this malware about 8 years ago. It just deletes the entries of every single file. Like a simple 1-pass deletion. I had 1,2TB of data "deleted" this way. You can use a recovery tool and you will even be able to rebuild the exact folder tree.
Wait how the fuck does that work on a USB? Since Windows NT 7.0 or so, autorun files are no longer executed on drive mounting? Do they use some kind of exploit or do I miss something?
"Glad I actually didn't actually plug this actual thing into actually anything actually important." what you mean like your fucking ethernet connection
How about plugging it into something that's not connected to anything at all, and which is also a testing machine, since this is for a TH-cam video and we all knew from the get go a usb drive with 2Tb costing you $3 is clearly bullshit?
@@Palmieres I mean, sure. That's one way to go about it, but this isn't likely to be a permanent machine anyways. It's a copy of Windows that isn't licensed. Wipe and reimage; too easy. Legitimately very little o harm if the machine is on its own physical network. I'm interested in how you would recommend he show files being deleted upon download next time?
I love how the fact that it's just a repurposed USB 2.0 cable, which explains the advertised data rate of 480 megabits per second, just flies over his head.
Same. He even talks of using that PC to avoid his main PC but then hooks up the test PC to his network, lmao. He keeps saying how thankful he is that he quarantined it but he didn't at all if the malware was in any way decent or modern. That malware is across his network now.
Wait you're telling me that a video that's basically hey I bought something that's most definitely malware and it says it has two terabytes hey it doesn't have to terabytes and it has malware but manages to be long enough to have three f****** ads in it with no real content in the video itself is somehow aggravating to you??? In all seriousness I would have liked him to delve deeper maybe why does he think this is happening why does he think someone selling this crap is there any information leaving his computer because I assume it's connected to the internet is it copying and sending and then deleting
@@paz1261 Your lame, sarcastic point would make some sense (instead of none) if he didn't drone on about quarantining the malware. You're missing the point entirely, lol.
So usually, a USB stick’s “malware” comes in the form of the firmware that’s on the USB stick. The USB stick will act like a keyboard when you first plug it in, then it will quickly open a terminal or notepad, enter data nearly instantaneously, and run the command or the file it just entered into Notepad. This will generally be done to gain remote access to a computer. So I can’t imagine why they would sell a USB stick who’s only purpose is to not allow files to be downloaded. If it was wiping the file system it would have likely done it to the whole OS, not just your library. And even then, UAC would have likely kicked in to thwart that (unless you turned it off). In any case, my point is that motive wise, it strikes me as odd that if it did contain malware, that it would be performing the kind of trolling that late 90’s viruses were known for and not obnoxiously announcing itself.
unless they are using the usb drive for a remote connection to steal everything on the computer or its running a VM while they loo thru your files. I think he should look to see if theres been increase in data usage on his network.
@@SuperCarlostroya python is pretty shit for making malware for the average consumer. I would only really use that on someone I know I want to rat or grab a file of their pc that actually codes. This malware is 95% gonna be c++ or just c.
Yeah it's just the theoretical limit. Probably will never see that just like you aren't going to see 6GB/s on a SATA 3. The disk is likely a reject that walked out the back door. Lot of schemers in the Chinese tech industry. Can't say I blame them. Hard life in the factories and gullible westerners with disposable money. Don't see the purpose of deleting files though. Ransomware or running spam bots would be more lucrative.
Man, you're brave to connect random usb devices. Even with a virtual machine setup, usb killers, DMA attacks in the case of thunderbolt on USBC, netbios-scanning ransomware are all possibilities. Be careful.
@@shutup84 Only that made you cringe? I couldn't watch more than a couple of minutes his presentation skills were so utterly cringe worthy, to say nothing of the stupid pile of product boxes and chair that would make anyone look like a freaking midget especially when next to the unnecessarily large TV, How hes got almost 20k subs is a mystery.
@@zybch For me it's like how you slow down to watch a not particularly terrible accident on the highway on the way home from work. It's interesting and unfortunate without being too traumatising. I assume he knows he's filling a unique niche - mildly tech savvy guy does Techtuber things.
This video feels rushed and unfinished. Plus, what happened with that waterproof test? He also don't seem to plan out or note things down. He didn't even bother to check the price before recording the second part.
you guys don't really get it do you? you do know that the flash drive had no actual data modules right? meaning that it had almost no data storage to begin with, secondly the Partition where the malware was hidden can't be located via the Windows Disk manager, so tracking it down was next to impossible on that machine, don't go spreading hate just because you don't understand what he was actually doing
@@JacketCK for it to be persistent there would be whatever malware the usb had on your pc. thus you can reverse it which depending on what it was made with can be simple or hard
8:37 You click "Open" instead of "Save File". Selecting Open will unzip to a temp directory but will only be unzipped and saved in downloads as long as Edge is still open. There is no malware here
Exactly was I was thinking. My USB drive which literally has 32GB uses the same "Chip PCB" and works like a charm. He (in the vid) just bought a fake capacity drive, nothing more.
After the virus scan, the first thing you should do when getting a USB drive that's suspect is to run a USB tester such as Flash Drive Tester or h2testw. Those are programs that tell you the actual size of the flash drive. It's possible to have the drive report any size the scammer wants to Windows (as seen in the video) while having significantly less memory.
@@Flicks2x he meant 11 minutes for no information because the usb has no data on it and you can not add any data to it. If you would have watched the video you would have known
@dark_ ness he gets distracted really easily, he said he'll test the waterproofing, the dude can barely even close the test window (5:58), and in the video, the packaging said 480 megabits (Mbps), while he tested it for 480 megaBYTES. He's talking about stuff he basically has no knowledge on, and his voice sounds like one of those college professors that complain all class and their voice is like anesthesia.
480 Mbps (which is what is listed on the package) is megabits per second, not megabytes per second. Which happens to be the theoretical maximum transfer rate of the USB 2.0 standard. It might be good if a tech channel knew that.
@@Tallnerdyguy Operating systems calculate size in base 2 (1024), that's the cause of the "loss" as like you said storage manufacturers use base 10 (1000).
@@Tallnerdyguy Not true, all OS use the correct term 1024 not the wrong term, just because the HDD manufactores are lazy gits is a bad thing, they should really stay true and calculate based on 1024 as thats the right way.
@@Wipeout186 Not really, it was true before but nowadays if you're talking about 1024 multiplication you should talk about Kio, Mio, Gio etc which are the normalized binary prefixes
How can Aliexpress sold this kind of junk to ruin its reputation? It's holding company, AliBaBa, is a huge company in China ranking within 500 largest companoes in the world.
Just one thing to point out: MBps - megabytes per second, Mbps - megabits per second and 1MBps = 8Mbps. Other than that thanks for sharing this. I will most probably avoid buying such gadgets.
@@navinsawesomeanddivineacco4221 as for sandbox, think of it like putting a particularly destructive kid in a sandbox with 10ft walls. They can do whatever they want, but they can't leave the sandbox to ruin everyone's playtime. A separate, disconnected system with no data is a sandbox. A properly configured virtual machine is a sandbox. A networked machine with some level of personal or professional use (in the video here) is NOT a sandbox
@@my-king Someordinarygamers channel. He does everything from virus emulation to demonstrations. He also has a series explaining and exploring the dark web.
@@mtnentertainment3454 That is a folder that Microsoft Edge keeps temporary files in (after the browser is closed, the files are deleted). When you click "Open" instead of "save" on edge, it puts that file in this folder. Naturally, when you close the browser, it deletes the file. No malware here.
Hey Jay, you should look into software to emulate a PC on your PC if you're gonna mess around with malware. Especially if your non important PC is connected to your personal internet!
Could have a tiered network. I have 2 routers (modem, and another router), one ending on .0.1, and one on .1.1 The first one cant access anything on the rest of my network
@@manni1998 Jup, you can clearly see it fake, it has a blue usb connector (indicating usb 3.0), but it has 2.0 written in the description, and also what kind of usb drive on earth does have 2TB of storage but isnt faster that 60MB/second XD
@@technicmasters7936 My father once bought a (at the time pretty cheap) 2 TB USB HDD for backup that was only USB 2.0. It's a Sata HDD though so if it needs to be fast we just plug a Sata cable in.
A prime candidate for TH-cam to remove the “you get paid more money if your video is longer than ten minutes” This could have been two minutes and mildly interesting instead it’s over ten minutes of dull rambling filler which has basically ironically made it video malware/spam.
I don't think this guy really has a choice since he needs viewtime to get his channel to rise in the metrics, and even if he's getting paid or not, he's still incentivised to make the vid as long as possible
1. The speed is 60MB/s 2. To keep files from being deleted, click *save* instead of *open* in edge. 3. 8:07 Is that files I see there on the flash drive?
Is this guy just a RAMBLING man err boy? Does he know what he is doing? Use it in a mac what happens? Does he think Im dumb? Only need to say something once not 3 times OMG
He is referring to the data on his hard drive. So it deletes not only the data you write on the stick, but also everything else on the hard drive. This is absolutely malicious.
I know right? this part annoyed me so much, lack of knowledge is a terrible problem, people start making non-sense claims, there is no way I am subscribing to this channel.
Well. If the malicious malware on it spreads across a network to other devices... All devices that were active while you PLUGGED IT ON THE NETWORK might now also have the same shit. Why on EARTH did you make a network connection?!
Of course he didn't know. He didn't learn anything except one of the effects of the malware he financially supported. EDIT: The only thing I learned from this video is that the dude running this channel doesn't know what the fuck he's doing and definitely shouldn't be giving people any sort of tech advice.
@@joeschmo322 Tebibyte is 1024^4. Computers frequently measure things as powers of 1024 instead of 1000. So storage might be sold as 1 TB because it has 1000^4 bytes but be read by the computer as 0.9TB because it has 0.9*1024^4 bytes.
I hope my parents have stopped buying them after several flashdrives that I ended up using first just straight up corrupted and died after 30MB stuff being put on, and after the few videos from AtomicShrimp explaining why that happened. Now I'm wondering how we find real and safe ones that won't lock up and corrupt and die after only 30MB.
@@refrigerator_man We count that as trusted? OK. I dunno what the trusted brands are is what I'm saying. I could google it but the internet can lie. Google frequently does. ¬_¬
@@refrigerator_man It doesn't know when places are open or shut, as one of the things I frequently search. Place is open? OK cool, let's go-It's shut. It won't 'be closed in two hours' if it's already closed. Time and energy wasted. I say 'google lies', it could just be misinformation 'cause I imagine it just gets posted up and not checked for validation or whatever. They just need content. What do you say the trusted brands are?
Even if you'd done nothing wrong and just want to prevent personal photos being handed around the FBI office, what you're suggesting would still be destruction of evidence which is a crime on its own. Second to that, this likely isn't deleting anything. I think its just messing up the headers. I'm not even sure this is malware, there's a real chance this is just a side effect of the way the device tries to spoof having 2tb of storage.
The whole flashdrive is build fine. That black thingy is called COB. Inside you have controller and memory module plus other things you need to to make it work. Mind one thing controller tells computer how much memory there's and obviously controls partitions. With factory software that can tell whatever you want to controller you can make such funny things you have experienced. Ps. Cobs are waterproof ;)
A couple of years ago I've got a suposedly 2TB USB drive, luckily this was in reality a 4GB USB stick and not a malware one. One mini tip when you're testing out these things: use linux or other OS that isn't windows, because it's the most common OS to get a malware.
This ^^ also it's just a script to empty out your downloads folder to be a pain if you try download any fixes, it might have actually let you save stuff if you had saved to another folder, but at that point I would always nuke from orbit, its the only way to be sure
@@khoado2060 which in turn was invented by... if we're gonna do that, then praise to Africa for creating the human race, but then how dare it, the human race has had a terrible impact on the world. Best go and ̶b̶l̶o̶w̶ ̶i̶t̶ ̶u̶p̶ bring it democracy, I heard there's oil there ;)
I don't personally find anything sticking out in the video, in fact, I like the fact that he shot it as he went through the experience. It made it seem more natural. What did you find specifically wrong with the video?
@@FireStarJutsu lots of things - when he unpackaged it he knew none of the details from when he bought it, he struggled to read the packaging (and not just because it was weird english), he didnt know how to use the software recommended to him, he said he was going to test whether it was waterproof ... I could go on, but there’s so much room for improvement that I don’t know what anyone gains from this. I guess we sort of get to see him trash his computer but honestly we can’t read anything on the screen so even that isn’t satisfying.
Guessing the end goal here isn't to scam people of their money but instead to get people to plug these into as many machines as possible, hence the decent looking drive and packaging for almost no cost.
Would love a dissection of this by a malware expert. I don’t get the business model or motive from this video, what it does before eventually deleting all your files; it may have scoured the files first for valuable information. There’s so many things it could have done, a truly dangerous version would hide and watch the keyboard, mouse movements, and websites visited to monitor logins and passwords for any number of sites, be it banking, social media like Facebook, eBay, email, etc. with BadUSB, any unknown USB device is dangerous, it could’ve been a real USB device, something as innocuous as a keyboard or mouse with corrupted firmware, which survives any attempt at detecting and removing malware, unless you have specialist USB firmware knowledge. Once plugged in, it could have infected any attached USB device, like the mouse or keyboard or hard drive, and any other USB device plugged in. The computer can be subsequently cleaned and reformatted, and still be reinfected. Scary stuff.
There is no malware on this flash drive. It is a completely empty storage media with a spoofed maximum storage size. There was no discernable behavior in the video that showed any apparent signs of the presence of malware on the computer. To add to this point, there isn't even any proof that the computer had any files on it to begin with as he simply navigated to folders and claimed they were already populated before this supposed malware went on a rampage. To go even further, if it was in fact a malware that deleted the contents of the User Folders, why didn't it delete everything it could find on the C:\ drive as well, especially "Program Files" and "ProgramData"? He then goes to show that the malware is allegedly still running in memory and is automatically deleting files he tries to download onto his system, but what's actually happening is... he isn't saving them permanently onto the downloads folder. As someone had already mentioned in the comments, when he downloads the file, he clicks on "Open" instead of "Save". In Microsoft Edge, "Open" will cause the file to be saved to Microsoft Edge's "Downloads" folder (a folder for temporary storage) and will keep the file alive until the user is finished with it, after which it will automatically be deleted by the operating system to clean up space. This is apparent by looking at the URL bar in the Windows Explorer window at 8:40 where he's seeing the contents of the .ZIP he just downloaded, then, at 8:42, he's back in the Microsoft Edge "Downloads" folder where it is empty. All he did was press MouseButton4 (the back button on the mouse), the computer sees he's done with the .ZIP file, and deletes it instantly to clean up. If you still believe there is malware still alive in memory that is actively deleting files, then why does he still have a file at 9:02? It's a hoax. A deception, most likely to be clickbait. I'm not saying that malicious USBs don't exist in the world - that's something that you're taught in Cyber Security classes - but their purpose is radically different: they are very typically designed to create a backdoor stealthily or to install ransomware, not wreak havoc on a machine like it's 2008.
@@Chaooo I kept an eye on the storage info when he had the folder open, and didn't see a change from after he plugged the drive in, so either the files were too small and nothing of import was lost, or, there was nothing on the hard drive to begin with.
@@mblack1993 It's also important to note that: if there really was malware present in memory, how was none of its behavior picked up by Windows Defender? Defender has gotten significantly better over time, especially when you have "Cloud-delivered protection" enabled so that heuristics can be easily compared with countless other malicious samples. It's not like this alleged malware was behaving in some exotic way, it was (allegedly) only deleting the contents of the User Profile folders. If this malware was that stealthy enough to get around UAC and from being detected by Windows Defender, why is it limited in this scope? It's like, you've found this hidden pathway under a bank that goes directly into the vault, and all you do is break some glass and throw over some racks. That makes no sense. I am not convinced at all that there is any malware in this video.
True, windows won’t even consider the memory in the rest of the usb if the partition isn’t compatible with Windows. If you partition 3 Gb out of 8 Gb and Windows can’t recognize the 3 Gb partition for whatever reason, it’ll say your drive is 5 Gb.
When you close edge it automatically cleans out the temp folder, had you left edge open it would be there. Clicking save instead of open, saves it to your downloads folder.
I commented this too but he said it also deleted files after hitting save. Probably USB interface chip-level malware. Would be a good sample to send to microsoft and maybe they can reverse engineer it and add a detection to Windows Defender to detect that kind of stuff and stop it.
for a long time, scammers have found how to spoof the rom to report more storage than is available. there are some old programs designed to test this, but it takes hours, as it physically writes and checks the whole disk.
the first time i discovered this was buying a PNY drive from Walmart that was deeply discounted. the later ones were "too good to be true" drives like in the video... wish, ebay, and other sites that allow 3rd party vendors are subject to this scam
Why dont you try constructive criticism instead of plain insults written with absolutes? Like: "I think the Idea behind the video was cool and there were 2-3 moments that made me smile but if you work on your expressions a little more then maybe next time I'll give it a thumbs up."
While that was interesting and you are pretty nice to look at, i will admit, i didn't quite feel like this was very informative. I was actually interested in how that file works and how they got the drive to show up that much space.
Here's a basic explanation as to what happened here: There's likely a single read only MicroSD card reader soldered to the contacts inside the housing of the actual USB device. The creator used a simple memory edit to "trick" windows into reading the drive as a custom set amount of storage (You can physically alter it via modification of the memory module, there's also software solutions that are much easier to get rid of (removed via flashing the drive)) Upon being plugged into a computer there's a custom built malware program (Which is not the focus of this channel) that runs immediately and silently installs itself into root directories. Now what the actual malware does is unknown without a deep dive into the drive (Im surprised after a year this guy hasn't done a collab video with one of the software analyst channels on TH-cam by sending them the drive and having them analyse it) but I suspect it sends all your files to a host somewhere, and promptly deletes them. I'm guessing his test computer didn't have internet connectivity so it just deleted them as a kill switch.
8:40 This happens because you click open instead of save. The file is stored in a temporary folder which gets deleted after you close the browser. If you click on save and place the file in the downloads folder, it should be there. The behavior of the files being removed is completely normal for what you are doing.
🤦♂️🤦♂️🤦♂️ MS Edge removes "temporary" files as soon as you close the browser, so no malware from the flash drive, the flash drive got a moded bios on it to show you higher capacity then it really is
@Brad Miller as I did say the flash drive has a firmware slashed that gives wrong capacity, and due to that the files on the said flash drive will disappear once the total space taken by files exceeds the actual flash capacity, that's a no brainer if you actually know anything about PCs...
Maybe he actually never had any private files on that computer. Because it's not his primary computer, so he might never had put any. Consider how low quality his video is, and that he can't remember the price, I wouldn't doubt he misremember and he actually never had any files on the computer from the start.
I love how he shows that downloading files into the temp folder then closing the browser causes the files to be deleted, but that's not malware, that's completely normal. Quite frankly I'm not sure if he just screwed up & accidentally opened up a blank install the second time & is just oblivious as hell as to why the temp folder deleted files, or if this is an active attempt to make a fake video for clout
Mail me stuff to build a computer out of! Or anything you would like me to install in my PC. (Future Video) Or send cool stuff, that's cool too.
Mail to:
Jay Avenian
2054 Kildaire Farm RD. #407
Cary, NC 27518
USA
Nice
I’ll mail you a bomb with a usb cable wired in. You must build the computer quickly in order to run the bomb defusing software and survive. Also I legally have to state that this is not a true statement.
I would send a condom if i wasn't in the middle of south America also ñ
My name is Walter White I live in:
I want to know what the point of this thing is? Usually a scam like this has something to gain for scammer. What are they gaining here? A couple of bucks? If they were aiming to just take your money, why not charge more? If the cheap price is just made as a way to sell them to chumps you'd think it'd do more than just delete files, like ransomware or a crypto miner or something. This is so confusing.
A man bought a 2TB USB drive from China. This is what happened to his lungs.
haha chubby emu viewer spotted in the wild
Nice!
Haha, very funny
Chubbyemu!
@@vedangbohra4562 Oh gawd! Now I remember this comment. The thicc emu is my religion.
"It says it is waterproof, we're gonna test that"
No waterproof test
it doesnott need. there is nothing to be waterproofed.... it is already waterproof device...
Plot Twist: He lives underwater
@@henriqueferreira8656 Plot Twist: underwater lives him
@@kaizo1148 plot twist: lives underwater he
@@josuuuuuuuuuuuuuuuuuuuuuuu1780 underwater: he lives in plot twist
As someone who lives in constant fear of data loss this video was like watching a horror movie, and i mean this in the kindest way possible
@Adrian Montane tf???
@Adrian Montane you post freaking fortnite videos and that guy/girl dosent even have a roblox avatar,lmfao
I lost my data 3 times.. Pain. 😔
You need to get out more
@Adrian Montane Stfu there is no reason for you to say that
9:58 This actually is a real USB-Stick. It also has capacity. Probably around 4GB or maybe 8GB. This is a very typical design used in small USB-sticks. You could try flashing an original firmware on it. Take a look at the device managers properties for this stick and research the management chip of the stick. You can find the tools required for some sticks on the internet. Would be interesting to see what this stick actually is.
you should become a TH-camr that buys attack ini devices online like these (could be different) then reverse engineer (if that's what you's call it) the chip to see how it was produced and what's on it and how it works with a few tips and tricks on how to not be in that situation? Idk but if like to watch that
@@drcyb3r you're right you changed my perspective on this whole vid, he makes it out as the module is a flimsy bit of plastic but you can clearly see some kind of metal on it, I understand the flashing part good point out there too. but yeah damn I really thought this was a pretty nice video but was also sceptical on why this guy with a big exposed computer set up would get in a situation like that in the first place. Thanks for your time put into that
Would be interesting to reverse engineer the malware too. No need to reverse engineer the chip for this
This is also the actual definition of a "virus", which destroys your computer with aboslutely no gain. Good malware developers try to not change the system too much and try to make money off you.
@@iUUkk There is no virus on the USB-drive. He just made it look like there is a virus. The nvidia driver is still in the downloads folder but nothing else is. Why should a virus not remove everything? It "removed" all other exe files but not that one?
@@drcyb3r sad thing is you can write script that just saves data somewhere else instead of the "usb drive" and make a real convincing product. Unfortunately the errors in the packaging just make it look worse like autocorrect exist
This is like buying the air inside a bag of chips.
it's like buying that for 2 cents, cuz who tf sell 2 rb flash for 4 usd?
@白 yea, I also usually prefer only the air
or worst buy a bag of chips, and it only has one chip. Lol
like those cheap grab bags? Lol
There are still jokes about the """"air"""" (that isn't air btw) in chips bags?
zz
Worth pointing out that the package says "USB Cable" and nothing about flashdrive.
yeah the packages are easy to get to make it look more legit.
the cable is really just a cheap 1-2 dollar ''gold plated'' durable cable.
i worked IT after working at a sort of pawn shop? where we recycle shit. and the packages we got like this where trough the roof with sent back cables because owners didnt want them. the data is so slow on them.
And the "module" with no memory is a standard usb custom module for a bunch of thinner things. The problem is that the scammers probably chose to inject malware in the space and probably prefered to buy a 512KB module...
@@edugames150 512k? lol could be anything from 128k to 128 megs or a few gigs even, whatever was cheap at the market that day
@Jays Tech Vault i do not believe that you are qualified to run a tech channel. please have more experience or take some classes before doing this.
as for your questions. When you download a file from the internet, it does not copy directly to the disk u chose to save, it 1st downloads it to the temp folder of the windows drive then copies it to the folder u chose, the download starts ok coz its writing to the c drive. when the download ends, it tries to copy this file from c to the folder you chose but since there are no data module, the data can not be written and gone. As for the malware, i cant tell coz you did not post any pics or didnt zoom into the usb but it might have a small rom in the chipset. thats where malware is kept. and ur question how it shows 1.9tb if no storage inside... well, you can change stuff on the chipset of the usb to show fake TB. Really, please have more experience for running a tech channel.
@@northwindx79 I don't believe you are qualified to use the English language though.... it's impossible to read your gibberish.
He reminds me of the guy that we used to troll at work by making his desktop wallpaper a screenshot of his desktop and hiding all his icons...
God damn that sounds painfully annoying. 🤣🤣🤣🤣🤣🤣🤣
That's funny
Blue screen of death screen saver was great for those guys as well.
@@jimmatheson9125 Those are fun on servers
😂😂 And I now have a new prank to try out
And this is why people use virtual machines to check sketchy shit out. Awesome video! Thanks for taking one for the team!
was he not using a virtual environment/machine?
@@psycheningnop, it was a actual system, but not his personal one, obviously, since he works with computers
Virtual machines won't save you from that since it's plugged directly into your computer, so for testing crap like these you need another burner system
"First up it says it's waterproof. We're gonna test that".
No you did not.
it is a piece of electronics, what the hell should get damaged if it isn't powered and you dry it off quick enough ? you can wash your freakin keyboard without anny problems in the dishwasher (if you dry them long enough afterwards) and it wont take anny damage. the only way electronics could be damaged by water is either by corosion or by beeing wet while they are powered.
@@Em.P14 A Water proof USB stick would be able to be submerged in water and work immediately afterward.
@@Dennzer1 is that regulated by law like this? Ok fair point then, then you got to add protection circuitary and may coat it with such a regular water resistent spray coating if you had a pcb with circuitary on the outside (unlike the one in the vid) but that is not a lot of effort.
@@Em.P14 I am only saying, it is either water proof, or it isn't. If it is, you can dunk it in water and use it right afterwards. If it isn't, you can dunk it it water, only to have it not work right afterwards.
I have no idea why you are talking about regulations right now.
@@Dennzer1 i didn't know the propper english therm to say what i wanted to, im not a native speaker after all, neither do i know how "waterproof" is exactly defined as manny people have different oppinions on it, there fore i wanted to know how it is defined by the law as it is the opinnion that counts.
So a nice $3 metal thingie and as a bonus some digital AIDS for your PC. Noice.
one wrong move and it's all gonna fall over
Thats why you use Linux
@@user-eq2fp6jw4g what if you install rootkits for your linux system
@@user-eq2fp6jw4g You can still infect Linux do not do a Apple and claim otherwise
@@user-eq2fp6jw4g all operating software gets viruses
It was a bit torturing to see you plugging that clearly suspicious pendrive on your computer while conected to your network
U know that executable virus cant execute themself ryt.
Autorun files get around that. Same reason things will launch if you put a cd/dvd in. Him bring connected to a network could/may have infected anything on his connection. Not to mention if he had ANY info on that pc it is 100% auto sending that to the seller. Hope he didn't buy anything or log on to any websites, those keyloggers are mean too.
@@SatinFoxx nope you still cant. Atleast on win 7 - 10
@@gabriella2902 people still figure out FTP exploits to this day.
please read this guy's saying again then, its about "executable" virus can execute themself. Not about FTP exploits like wannacry did which can be occured remotely.
The smile when he said “yeah all the files gone” felt. 😖
I'd plug it into a Linux machine and use Gparted to see if it has any hidden partitions.
That's what I was hoping he would do too. 'lsblk', 'blkid' or /dev/disk would likely show it right off the bat. Since Linux doesn't just run random shit that people plug into a USB port, there should be no real risk in mounting it and looking at the files. But of course for safety I would do it from a chroot jail or live disk (with no drives mounted and network disabled).
run a gparted live CD first, to really minimize the risk.
glad you guys know this stuff
@@krozareq Another option is to plug it into a linux guest VM with USB port mapped, but a live linux CD would be the best idea with all storage unplugged to be safe.
I'd also like to see Jay do more tests. What I do not understand is what the scam is all about, the $3 at best would cover the costs of the device, no one is making any money, and no one is really loosing any money except pocket change. It has to be all about injecting the malware for gaining access to the PC, but it gives itself away by deleting files, it's just crazy to go through the trouble of making this thing for nothing.
@@geekinasuit8333 maybe it installs a crypto miner?
Jay has discovered the rare and elusive "Write-Only Memory"
More like "Bye Only Memory"
@@Dark.Shingo can you believe it even did ANYTHING?
dedotated WOM
ROM
WORN: Write Once, Read Never.
Man, I wish I seen this before I brought my 800tb USB drive for 5.99 😔
@@Expialidoucious lmao nah, I'm only trolling. I'm aware 2tb could get quite expensive & there's no such thing as an 800tb usb drive.
I bought a 64GB for $5
Not bad
@@IamINERT Got to get those deals while they're hot!
@@IamINERT a 8gb cost me $7 but it's fine
@@user-wq9mw2xz3j tf i got 128gb for $3
the reason there’s no disc space is they can actually program the usb drive to say whatever space it holds even if it ACTUALLY holds nothing or even less then what is advertised.
Confucious say “put foreign USB in virtual machine first”.
How do you do that...
virtual machines are still susceptible to malware tho.
@@gamelard1963 but the host isnt
@@gamelard1963 yeah thats the point
@@gamelard1963 Sandboxing.
Perfect gift for your most hated relatives.
Nah that’s the USB Killer
@@yrly59e this is cheaper and annoying somehow...
@@yrly59e Na, that's re-usable, so that's for more "Covert" operations, aka the dreaded "In-laws" computer. Jks.
In all seriousness if you have the urge to use this on your relatives then maybe you should join a different family, much less hassle in the long run.
Also, at £2 a time VS £20 for a decent USB killer, you are getting more value with this. You get to make people suffer long term, and you get to reuse it after the malware has been removed. Aka, "The Circle of Life". Lol
@@yrly59e usb killer would be like a criminal work ,this is more appropriate prank
You'd have to hate them a lot.
His entire technical capability consists of being able to complete a purchase on eBay. Period. That is it. No sand boxing, no vm, no monitoring, no network segmentation, nothing. Just wow.
...Let alone that he has his infected PC networked. THAT just gave me the creeps.
Also no "data modules"? Come...on... xD Sure, not everyone knows what a USB-Payload is and how malware is written ontop of it but ouch. This is a serious "Do not try at home" type of video o.o;
Dont forget the Rambling !!!!!
It's not a bad idea to set up a dedicated testing computer. Just make a disc image with the software you need, isolate the entire computer from your network and wipe the hard drive between tests. That's even safer than using a VM. Of course, if you can't do that for whatever reason, using a VM instead is a lot better than nothing.
He was at least smart enough not to test this USB on his main computer, but it doesn't seem like he properly prepared his test computer, or had enough knowledge himself to properly explain what he was looking at. Those are huge mistakes when doing this kind of testing. But hopefully, no serious harm was done and he'll learn to do better in the future.
@@Melicoy gotta hit that 10 minute mark for the monetization
Lol yall do the most to bring down this guy. He's a kid, he's a kid in college. He's just having fun, and you're just being the weird neckbeard online trying to drag him down. Give him a break for fucks sake.
I almost bought one of these things a few years back, saw the reviews and some said its legit and showed pictures but the actual storage was just around 10gb of storage instead of a whole terabyte. Now that i know more about computer and tech stuff i can avoid these types of scams.
These are very basic and avoidable scams tbh
I'm surprised someone like you fell for this
Cool, you can buy malware for $3 and you will get a not working USB drive as a gift.
In China you buy malware for fun.
China --+Cheap Hidden Inaccessible Noncompliant Anarchy. I love China, but they don’t love us.
For $3, yes just 3 dollars! You not only get a terrific Gold Plated USB Stick Gem! fully loaded with lots of storage, but also our great little stick will automatically clean up your computer, at no extra charge to you. It is a gift that keeps on giving! Warning!!! do not connect this to a PC/Laptop! with anything that has content you would like to keep! doing so, could be fatal to data! LOL!
I encoutered this malware about 8 years ago. It just deletes the entries of every single file. Like a simple 1-pass deletion. I had 1,2TB of data "deleted" this way. You can use a recovery tool and you will even be able to rebuild the exact folder tree.
Wait how the fuck does that work on a USB? Since Windows NT 7.0 or so, autorun files are no longer executed on drive mounting? Do they use some kind of exploit or do I miss something?
@@mactalk2871 Who knows...
Why would someone make malware? I get if it was to hijack it or something, but why to just destroy the pc?
Chicken_Nuggets_Are_Pretty_Good we dont know if it only deletes the files or if it will set a ransome later
@@ChickentNug These are the same people that grief on Minecraft servers. They get off on the suffering of others.
"Glad I actually didn't actually plug this actual thing into actually anything actually important." what you mean like your fucking ethernet connection
Thinking exactly that... what on earth
He could very well have something like an EdgeRouterX with distinct networks or a dedicated service line for things like this.
How about plugging it into something that's not connected to anything at all, and which is also a testing machine, since this is for a TH-cam video and we all knew from the get go a usb drive with 2Tb costing you $3 is clearly bullshit?
@@Palmieres I mean, sure. That's one way to go about it, but this isn't likely to be a permanent machine anyways. It's a copy of Windows that isn't licensed. Wipe and reimage; too easy.
Legitimately very little
o harm if the machine is on its own physical network.
I'm interested in how you would recommend he show files being deleted upon download next time?
@@Palmieres I'm confused... is your comment a hybrid of both declarative and inquisitive statements? It's a trend, I think. Who needs grammar anyway.
The malware just set all your files to "hidden". They are still there, you just can not see them.
dont think so as the window immediatly closed after he opened it. that shouldnt happen if they are just set to hidden
@@Maydarx and it would also warn you about downloading duplicates and rename them with numbers in parentheses
the question is why would they do it? He obviously tampered with it beforehand
A piece of malware car Never delete your file, it's just hides it. Like you said
I love how the fact that it's just a repurposed USB 2.0 cable, which explains the advertised data rate of 480 megabits per second, just flies over his head.
Okay wasn't just me
Damn this dude could work on The Verge.
Well let's hope he has a Swiss army knife, which hopefully has a Phillips head screwdriver on it.
@@lmcgregoruk don't forget a CPU installation tool
@@velocity4739 come on man, how could you forget the tweezers!
You guys live dangerously. First thing one should do is put on their anti static wrist strap.
@@terrorvizyn1043 you mean live strong bracelet?
Came here thinking he was gonna log the malware's activities, run it sandboxed at least. Why did youtube recommended me
same
Same. He even talks of using that PC to avoid his main PC but then hooks up the test PC to his network, lmao.
He keeps saying how thankful he is that he quarantined it but he didn't at all if the malware was in any way decent or modern. That malware is across his network now.
Wait you're telling me that a video that's basically hey I bought something that's most definitely malware and it says it has two terabytes hey it doesn't have to terabytes and it has malware but manages to be long enough to have three f****** ads in it with no real content in the video itself is somehow aggravating to you???
In all seriousness I would have liked him to delve deeper maybe why does he think this is happening why does he think someone selling this crap is there any information leaving his computer because I assume it's connected to the internet is it copying and sending and then deleting
Oh no! He did exactly what he said in the thumpnail! How dare he! He wasted my time! Im just too smart for this video smh
@@paz1261
Your lame, sarcastic point would make some sense (instead of none) if he didn't drone on about quarantining the malware. You're missing the point entirely, lol.
Love your channel bro 💪💛
So usually, a USB stick’s “malware” comes in the form of the firmware that’s on the USB stick. The USB stick will act like a keyboard when you first plug it in, then it will quickly open a terminal or notepad, enter data nearly instantaneously, and run the command or the file it just entered into Notepad. This will generally be done to gain remote access to a computer. So I can’t imagine why they would sell a USB stick who’s only purpose is to not allow files to be downloaded. If it was wiping the file system it would have likely done it to the whole OS, not just your library. And even then, UAC would have likely kicked in to thwart that (unless you turned it off). In any case, my point is that motive wise, it strikes me as odd that if it did contain malware, that it would be performing the kind of trolling that late 90’s viruses were known for and not obnoxiously announcing itself.
unless they are using the usb drive for a remote connection to steal everything on the computer or its running a VM while they loo thru your files. I think he should look to see if theres been increase in data usage on his network.
where did they store the malware if the usb piece has no nand flash ?
@@Wr3kingba1l it's a tech channel.
Is this what the CIA did to the Iranian nuke plant? Worked for them quite well.
@@skurdibbles7913 the NSA*
And here I was hoping you dissected the malware
Same man, was thinking it was some hidden python script or sth
@@SuperCarlostroya This requires Python installed on his computer which isn't I believe. Very interesting indeed how this malware got on his computer
@@SuperCarlostroya python is pretty shit for making malware for the average consumer. I would only really use that on someone I know I want to rat or grab a file of their pc that actually codes. This malware is 95% gonna be c++ or just c.
@David. Bat scripts that link (or are spoofed) to core system components for example the registry are always in use so it could be disguised and run
It is a bad usb with a microprocessor on it that executes the code when you plug the usb in
when he keeps saying "megabytes per second" when the packaging says "480Mbps" with a lowercase B.....
Leave my dyslexia alone
480 megabit.. still got nowhere close to advertised 60 MB/s :)
@@Mannard74 yeah I was gonna say even at megabits it was still way slow
@@Mannard74 Have you ever seen a USB 2.0 flash drive do anywhere near 60 MB/s? I certainly haven't.
Yeah it's just the theoretical limit. Probably will never see that just like you aren't going to see 6GB/s on a SATA 3. The disk is likely a reject that walked out the back door. Lot of schemers in the Chinese tech industry. Can't say I blame them. Hard life in the factories and gullible westerners with disposable money. Don't see the purpose of deleting files though. Ransomware or running spam bots would be more lucrative.
Man, you're brave to connect random usb devices. Even with a virtual machine setup, usb killers, DMA attacks in the case of thunderbolt on USBC, netbios-scanning ransomware are all possibilities. Be careful.
So you’re telling me u stuck that usb drive into a pc that was connected to your internet?
Yeah, that made me cringe a bit.
@@shutup84 Only that made you cringe? I couldn't watch more than a couple of minutes his presentation skills were so utterly cringe worthy, to say nothing of the stupid pile of product boxes and chair that would make anyone look like a freaking midget especially when next to the unnecessarily large TV, How hes got almost 20k subs is a mystery.
@@zybch For me it's like how you slow down to watch a not particularly terrible accident on the highway on the way home from work. It's interesting and unfortunate without being too traumatising. I assume he knows he's filling a unique niche - mildly tech savvy guy does Techtuber things.
@@zybch You need to learn how to write a sentence.
Let alone from the sounds of it it could have been a PC killer USB. Wonder if any other PC on the network was infected with anything.
Sounds like my dad complaining about shit he bought on eBay, except it’s 11 minutes
Remove except and its relatable
and you have volume control X'D
@@DaMoniable for your dad?
@@pvshka
The joke
.
.
You
@@DaMoniable no u
Quite literally, since I was adding to the joke
It Clearly says 480 megabits (Mbps), not 480MBps (megabytes). YUUUGE difference!
That bag was for a usb CABLE........
@@anomicxtreme IT clearly says "USB 2.0 Stick", which maxes out at 480Mbit.
You said yuuuge not huge it makes a big difference lol
@@saisankara4807 accent
Yoshikage Serazawa lol
Least knowledgeable tech youtuber since the verge pc build guy
Im unclear on almost anything he says. He gets distracted very easily.
This video feels rushed and unfinished. Plus, what happened with that waterproof test? He also don't seem to plan out or note things down. He didn't even bother to check the price before recording the second part.
@@Liggliluff That kind of like yea described happened. Well oh yea it did umm I guess. It like described it kind of happens yea.
Liggliluff so you’re saying lower quality videos shouldn’t get views?
@@Ssyphoned Yes
A Man with ADD probably shouldn't make videos. MEH.
I wanted you to be like "I got this malware out of the usb and here is what it does and what the code looks like"
you guys don't really get it do you? you do know that the flash drive had no actual data modules right? meaning that it had almost no data storage to begin with, secondly the Partition where the malware was hidden can't be located via the Windows Disk manager, so tracking it down was next to impossible on that machine, don't go spreading hate just because you don't understand what he was actually doing
@@JacketCK Where was the malware file stored then?
@@JacketCK for it to be persistent there would be whatever malware the usb had on your pc. thus you can reverse it which depending on what it was made with can be simple or hard
He's still too much of an amateur. If someone sends me one of these I'll make a video on it.
It's likely just a macro. Just spamming Ctrl+a ,del whenever it detects the file manager is opened.
8:37 You click "Open" instead of "Save File". Selecting Open will unzip to a temp directory but will only be unzipped and saved in downloads as long as Edge is still open. There is no malware here
Lol 10/10 detective work.
Exactly was I was thinking. My USB drive which literally has 32GB uses the same "Chip PCB" and works like a charm. He (in the vid) just bought a fake capacity drive, nothing more.
@@thesaintnoodle it doesn't, he closes the edge tab which closes the browser
After the virus scan, the first thing you should do when getting a USB drive that's suspect is to run a USB tester such as Flash Drive Tester or h2testw. Those are programs that tell you the actual size of the flash drive. It's possible to have the drive report any size the scammer wants to Windows (as seen in the video) while having significantly less memory.
11 minutes of literally no information
LMAO
Andrew Gengler lolol thanks I’ll stop watching now
Literally this guy is some ego stroker showing off his empty boxes of gear.
@@Flicks2x he meant 11 minutes for no information because the usb has no data on it and you can not add any data to it. If you would have watched the video you would have known
EdwiN still 11 minutes of nonsense. I did watch it.
this dude is so underrated i can’t believe it
I have the high ground.
The video is incorrect, he’s just rambling about stuff he has no knowledge on.
@@d4ze7385 how?
@dark_ ness he gets distracted really easily, he said he'll test the waterproofing, the dude can barely even close the test window (5:58), and in the video, the packaging said 480 megabits (Mbps), while he tested it for 480 megaBYTES. He's talking about stuff he basically has no knowledge on, and his voice sounds like one of those college professors that complain all class and their voice is like anesthesia.
@@d4ze7385the video is only about buying it :/
The packaging clearly says "USB CABLE". Pointless to read what is on the label from that point, as it doesn't relates to the flash drive.
Yea lol they just put it in a usb cable box how sad
So basically, a 10 min video of a """"2TB USB""" magically deleting files, without even explaining how even the magic works... :/
480 Mbps (which is what is listed on the package) is megabits per second, not megabytes per second. Which happens to be the theoretical maximum transfer rate of the USB 2.0 standard. It might be good if a tech channel knew that.
Cope
@@frunked 💀
mald
Agree with you!!!
480Mb is standard USB 2.0 advertised speed. Technically it can transfer at that speed for like 1 second. It's also in Mbit, which is equal to 60 MB/s.
Drive space is calculated at 1024 not 1000, so that's your "loss" there. It's about right for a formatted volume.
No. While yes 1 GB is technically 1024 MB, hard drives are calculated at 1000 MB for "1GB". Thank seagate
@@Tallnerdyguy Operating systems calculate size in base 2 (1024), that's the cause of the "loss" as like you said storage manufacturers use base 10 (1000).
@@Tallnerdyguy Not true, all OS use the correct term 1024 not the wrong term, just because the HDD manufactores are lazy gits is a bad thing, they should really stay true and calculate based on 1024 as thats the right way.
@@Wipeout186 Not really, it was true before but nowadays if you're talking about 1024 multiplication you should talk about Kio, Mio, Gio etc which are the normalized binary prefixes
Any drive you buy will never be the size it's advertised as, why don't people know this still?
How can Aliexpress sold this kind of junk to ruin its reputation? It's holding company, AliBaBa, is a huge company in China ranking within 500 largest companoes in the world.
Just one thing to point out: MBps - megabytes per second, Mbps - megabits per second and 1MBps = 8Mbps. Other than that thanks for sharing this. I will most probably avoid buying such gadgets.
Tks I always don't remember it.
no but actually yes
....You're not sandboxing the **extremely obvious** malware payload?
woooow.
Even if it isn't your main system.
Hey guys, i know i sound stupid but what are sandboxes and backdoors ? Everyones talking about it in the comments.
So a backdoor is a virus thst hackers use to get information ?
Ah , thank you so much @marthale7
@@navinsawesomeanddivineacco4221 as for sandbox, think of it like putting a particularly destructive kid in a sandbox with 10ft walls. They can do whatever they want, but they can't leave the sandbox to ruin everyone's playtime. A separate, disconnected system with no data is a sandbox. A properly configured virtual machine is a sandbox. A networked machine with some level of personal or professional use (in the video here) is NOT a sandbox
Just plug it to xbox 360 , or any music player that handle USB and format it :)
I thought you were going to find the malware in the hidden memory part. And then decode it ... Not much of a tech guru actually...
Same. Any videos that do this?
There was no malware. Just a corrupt usb device that somehow screwed up Windows, probably through an obscure bug.
@@JamesWilson01 it would seem that way... But it does seem like a big coincidence.
@@my-king Someordinarygamers channel. He does everything from virus emulation to demonstrations. He also has a series explaining and exploring the dark web.
@@PugilistCactus thank you. I'll try to find them. He did a video on this actual one?
Great video and very good job you are doing for others here. Thanks.
downloading something in the "temp" folder, and wondering why it's gone when he close the browser... genius man, genius!
That's not the temp folder...
@@mtnentertainment3454 That is a folder that Microsoft Edge keeps temporary files in (after the browser is closed, the files are deleted). When you click "Open" instead of "save" on edge, it puts that file in this folder. Naturally, when you close the browser, it deletes the file. No malware here.
@@EDToasty My temp folder doesn't delete
@@globalfamily8172 It should
@@yorickmeulenbelt4all more specifically, my download folder does not delete... sorry for the misstatement
If you’re going to continue testing questionable stuff, I’d recommend setting up a VM..... like now.
Yep and he could have literally done that in 10 minutes
Anything can be fixed
A vanilla milkshake?
@@heydannypark Ask Kelis, her milkshakes bring all the boys to yard 🤣
How do you plug a USB stick into a VM?
Hey Jay, you should look into software to emulate a PC on your PC if you're gonna mess around with malware. Especially if your non important PC is connected to your personal internet!
Not helpful in this case, the dedicated computer that he used is really the only "safe" way to do this one
Could have a tiered network. I have 2 routers (modem, and another router), one ending on .0.1, and one on .1.1 The first one cant access anything on the rest of my network
Easy to get confused. Mb is Mega bits, MB is megabytes. The drive states 480 megabytes bits a sec
4:57 That are Mbits ----480Megabits-------60MB---MegaBytes
480 MBit/s is the max USB 2,0 speed, as far as I know
@@manni1998 Jup, you can clearly see it fake, it has a blue usb connector (indicating usb 3.0), but it has 2.0 written in the description, and also what kind of usb drive on earth does have 2TB of storage but isnt faster that 60MB/second XD
@@technicmasters7936 Also the packaging is for a cable, not the flash drive. Just a repurposed plastic bag.
@@technicmasters7936 for the same reason of because we have SDcrads with about a TB of space
@@technicmasters7936 My father once bought a (at the time pretty cheap) 2 TB USB HDD for backup that was only USB 2.0.
It's a Sata HDD though so if it needs to be fast we just plug a Sata cable in.
A prime candidate for TH-cam to remove the “you get paid more money if your video is longer than ten minutes”
This could have been two minutes and mildly interesting instead it’s over ten minutes of dull rambling filler which has basically ironically made it video malware/spam.
Seriously. I wanted to scream. Please god just edit out all of your bloopers and half the video where you are correcting yourself
I don't think this guy really has a choice since he needs viewtime to get his channel to rise in the metrics, and even if he's getting paid or not, he's still incentivised to make the vid as long as possible
I mean, you could just, I don't know? Actually make 10 mins of decent content?
Boring video, can't believe I watched 4 mins of this utter tripe
this video just wasn't made for you guys
I would be really interested to see the log records when you plug in that drive to see what may be going on in the background.
A usb drive advertised as 2tb of storage actually holds NEGATIVE storage. Im astonished
Your set up is giving me anxiety lol.
The lack of customization is against international laws.
For me aids
@@weetjewatikwil1 Leer Engels..
@@Terandium no-nee-nò-nein-no
Leer meer idiomen.
I cant like your comment because it's at 420 but I would
1. The speed is 60MB/s
2. To keep files from being deleted, click *save* instead of *open* in edge.
3. 8:07 Is that files I see there on the flash drive?
4) 9:00 files still in his actual downloads folder. Not the temp directory edge uses when you click run
Is this guy just a RAMBLING man err boy?
Does he know what he is doing?
Use it in a mac what happens?
Does he think Im dumb? Only need to say something once not 3 times OMG
8:42 It only "deleted" because you closed edge, right? It did "open" in the temp folder..
"Its writing data to nowhere. Thin air."
Ten seconds later: "All my data is gone!"
He is referring to the data on his hard drive. So it deletes not only the data you write on the stick, but also everything else on the hard drive. This is absolutely malicious.
@@adamabele785 I'm aware...I'm saying it's obviously writing data to somewhere.
It was in the Microsoft edge temp folder... THAT CLEARS WHEN YOU CLOSE EDGE.
yep,
I know right? this part annoyed me so much, lack of knowledge is a terrible problem, people start making non-sense claims, there is no way I am subscribing to this channel.
but he didn't close edge?
@@catte_6376 So pressing the red X doesn't close it...
@@catte_6376 It disappeared as soon as he closed edge.
Well. If the malicious malware on it spreads across a network to other devices... All devices that were active while you PLUGGED IT ON THE NETWORK might now also have the same shit.
Why on EARTH did you make a network connection?!
malicious software doesn't just "spread". what file transfer service would it go through? who executes it?
@@vke6077 yes, some can automatically infect other devices on the network
I mean, he obviously didn't know. We all start somewhere
@@HappyHimitsu I know some can. But I understand what you mean
Of course he didn't know.
He didn't learn anything except one of the effects of the malware he financially supported.
EDIT: The only thing I learned from this video is that the dude running this channel doesn't know what the fuck he's doing and definitely shouldn't be giving people any sort of tech advice.
What an amateur video. "Hi guys, I got a virus! No idea what it is. Bye!"
But he's "hawT!"
Ya like the 2000's
Thanks for saving me 10 minutes. I couldn't get past the first minute and a half of tongue-clacking and lip-smacking noises.
@@jovetj no
@@danmagoo lol! I was just about to comment on that.
Why did you not run a scan on the drive before you started using it? Or were you expecting malware anyway?
I was hoping for a little more of an investigation haha. This video felt over before it really started.
they still sell that sketchy sht on every online market, and people still keep falling for it lmfao.
Seems like someone needs to learn the difference between bits and Bytes.
Network Purist at it again =:)
The problem is that TB is frequently used for both tebibytes and terabytes.
@@falconJB TB is TeraBytes, Tb is Terabits. I have no idea what a tebibytes is.
@@joeschmo322 Tebibyte is 1024^4. Computers frequently measure things as powers of 1024 instead of 1000. So storage might be sold as 1 TB because it has 1000^4 bytes but be read by the computer as 0.9TB because it has 0.9*1024^4 bytes.
@@falconJB My brain couldn't handle the maths
Do you have any tips on how we can know if the drive is for real or not? This is making me anxious on buying one.
No matter how much I tell my technologically incompetent dad, he's always purchasing stuff like this (minus the malware).
I hope my parents have stopped buying them after several flashdrives that I ended up using first just straight up corrupted and died after 30MB stuff being put on, and after the few videos from AtomicShrimp explaining why that happened.
Now I'm wondering how we find real and safe ones that won't lock up and corrupt and die after only 30MB.
@@Roadent1241 trusted brands like SanDisk?
@@refrigerator_man We count that as trusted? OK. I dunno what the trusted brands are is what I'm saying.
I could google it but the internet can lie. Google frequently does. ¬_¬
@@Roadent1241 proof?
@@refrigerator_man It doesn't know when places are open or shut, as one of the things I frequently search. Place is open? OK cool, let's go-It's shut. It won't 'be closed in two hours' if it's already closed. Time and energy wasted.
I say 'google lies', it could just be misinformation 'cause I imagine it just gets posted up and not checked for validation or whatever. They just need content.
What do you say the trusted brands are?
The whole time this guy is like:
"Ahh yes, this USB is made out of USB"😂😂
i want to buy this because people are always stealing my usb sticks
I really hope this is a joke
Edit: I read that comment wrong
@@lasagnatray7879 why
@@mrbirb oh I read the comment wrong. Forget I existed
Genius!
@@lasagnatray7879 me_irl
This is a great tool to get away from the fbi with deleting everything on your computer with a simple plug in and restart.
Even if you'd done nothing wrong and just want to prevent personal photos being handed around the FBI office, what you're suggesting would still be destruction of evidence which is a crime on its own.
Second to that, this likely isn't deleting anything. I think its just messing up the headers. I'm not even sure this is malware, there's a real chance this is just a side effect of the way the device tries to spoof having 2tb of storage.
Drives usually hold less than the advertised amount, because NTFS formatting takes some of the storage.
Also the 1000 vs 1024 thing
Which becomes a 1 trillion vs 1.1 trillion thing when you raise each to the power of four
USB drives are usually not formatted as NTFS
Usually they are formated in FAT32 or exFAT. MY 128GB drive was formated in exFAT
you mind sparing me one of those 1080s you have stacked there
ikr lmao
Johnny
The multiple Minecraft clients open in the background on the PC gave me a smile. :) This is a man of culture.
The whole flashdrive is build fine. That black thingy is called COB. Inside you have controller and memory module plus other things you need to to make it work. Mind one thing controller tells computer how much memory there's and obviously controls partitions. With factory software that can tell whatever you want to controller you can make such funny things you have experienced. Ps. Cobs are waterproof ;)
Why u out here leaving me with more questions than I started with.
When you smacked you lips it actually aggravated my soul I don't know why
Omg this!!! I cant stand that sound and its from a place of smugness which makes it much worse
Same I hate it to
I had therapy and am now immune to that sound. It is related to mom done breastfeeding.
A couple of years ago I've got a suposedly 2TB USB drive, luckily this was in reality a 4GB USB stick and not a malware one.
One mini tip when you're testing out these things: use linux or other OS that isn't windows, because it's the most common OS to get a malware.
This ^^
also it's just a script to empty out your downloads folder to be a pain if you try download any fixes, it might have actually let you save stuff if you had saved to another folder, but at that point I would always nuke from orbit, its the only way to be sure
Or just use a VM like virtual box
@@nukliergeneral Are you sure about that?
@@Minitomate yes
@@nukliergeneral arguably the host isn't completely isolated from the vm, but yeah with shitty malware that would be ok
More than just malware? I just got clickbaited.
It’s actually Mega bits per second not MegaBytes whenever you talk about transmission rate
You can see one is Mb and the other MB
he was clearly saying "mecca-bites"... slurring because he was high, or drunk, or cba to pronounce anything properly. Oh wait, nope, just American :P
@@PlokgiH I can’t tell if you’re joking or you’re an actual doucebag
@@ananimeprofilepicture.9876 both :)
Thought so
@@khoado2060 which in turn was invented by... if we're gonna do that, then praise to Africa for creating the human race, but then how dare it, the human race has had a terrible impact on the world.
Best go and ̶b̶l̶o̶w̶ ̶i̶t̶ ̶u̶p̶ bring it democracy, I heard there's oil there ;)
This video shows the importance of having a script or at the least an outline before you shoot your vid.
I don't personally find anything sticking out in the video, in fact, I like the fact that he shot it as he went through the experience. It made it seem more natural.
What did you find specifically wrong with the video?
@@FireStarJutsu yeah I agree with you on this one
Go watch TV then. A lot of scripted shows there.
@@khoado2060 there is, but it ain't scripted
@@FireStarJutsu lots of things - when he unpackaged it he knew none of the details from when he bought it, he struggled to read the packaging (and not just because it was weird english), he didnt know how to use the software recommended to him, he said he was going to test whether it was waterproof ... I could go on, but there’s so much room for improvement that I don’t know what anyone gains from this.
I guess we sort of get to see him trash his computer but honestly we can’t read anything on the screen so even that isn’t satisfying.
Guessing the end goal here isn't to scam people of their money but instead to get people to plug these into as many machines as possible, hence the decent looking drive and packaging for almost no cost.
Scary. A great reminder about why counterfeit and malicious intent is to be taken seriously.
China's attack via e+commerce
There will probably be a point in time in which an actual 2tb drive costs 2 dollars.
Would love a dissection of this by a malware expert. I don’t get the business model or motive from this video, what it does before eventually deleting all your files; it may have scoured the files first for valuable information. There’s so many things it could have done, a truly dangerous version would hide and watch the keyboard, mouse movements, and websites visited to monitor logins and passwords for any number of sites, be it banking, social media like Facebook, eBay, email, etc.
with BadUSB, any unknown USB device is dangerous, it could’ve been a real USB device, something as innocuous as a keyboard or mouse with corrupted firmware, which survives any attempt at detecting and removing malware, unless you have specialist USB firmware knowledge. Once plugged in, it could have infected any attached USB device, like the mouse or keyboard or hard drive, and any other USB device plugged in. The computer can be subsequently cleaned and reformatted, and still be reinfected.
Scary stuff.
There is no malware on this flash drive. It is a completely empty storage media with a spoofed maximum storage size. There was no discernable behavior in the video that showed any apparent signs of the presence of malware on the computer. To add to this point, there isn't even any proof that the computer had any files on it to begin with as he simply navigated to folders and claimed they were already populated before this supposed malware went on a rampage. To go even further, if it was in fact a malware that deleted the contents of the User Folders, why didn't it delete everything it could find on the C:\ drive as well, especially "Program Files" and "ProgramData"?
He then goes to show that the malware is allegedly still running in memory and is automatically deleting files he tries to download onto his system, but what's actually happening is... he isn't saving them permanently onto the downloads folder. As someone had already mentioned in the comments, when he downloads the file, he clicks on "Open" instead of "Save". In Microsoft Edge, "Open" will cause the file to be saved to Microsoft Edge's "Downloads" folder (a folder for temporary storage) and will keep the file alive until the user is finished with it, after which it will automatically be deleted by the operating system to clean up space. This is apparent by looking at the URL bar in the Windows Explorer window at 8:40 where he's seeing the contents of the .ZIP he just downloaded, then, at 8:42, he's back in the Microsoft Edge "Downloads" folder where it is empty. All he did was press MouseButton4 (the back button on the mouse), the computer sees he's done with the .ZIP file, and deletes it instantly to clean up. If you still believe there is malware still alive in memory that is actively deleting files, then why does he still have a file at 9:02?
It's a hoax. A deception, most likely to be clickbait.
I'm not saying that malicious USBs don't exist in the world - that's something that you're taught in Cyber Security classes - but their purpose is radically different: they are very typically designed to create a backdoor stealthily or to install ransomware, not wreak havoc on a machine like it's 2008.
@@Chaooo I kept an eye on the storage info when he had the folder open, and didn't see a change from after he plugged the drive in, so either the files were too small and nothing of import was lost, or, there was nothing on the hard drive to begin with.
@@mblack1993 It's also important to note that: if there really was malware present in memory, how was none of its behavior picked up by Windows Defender? Defender has gotten significantly better over time, especially when you have "Cloud-delivered protection" enabled so that heuristics can be easily compared with countless other malicious samples.
It's not like this alleged malware was behaving in some exotic way, it was (allegedly) only deleting the contents of the User Profile folders. If this malware was that stealthy enough to get around UAC and from being detected by Windows Defender, why is it limited in this scope?
It's like, you've found this hidden pathway under a bank that goes directly into the vault, and all you do is break some glass and throw over some racks. That makes no sense.
I am not convinced at all that there is any malware in this video.
dude, no formatting, no partitioning, what? do something a techie might do
Linux would be a good start
True, windows won’t even consider the memory in the rest of the usb if the partition isn’t compatible with Windows. If you partition 3 Gb out of 8 Gb and Windows can’t recognize the 3 Gb partition for whatever reason, it’ll say your drive is 5 Gb.
When you close edge it automatically cleans out the temp folder, had you left edge open it would be there. Clicking save instead of open, saves it to your downloads folder.
And what about his other files?
@@Neiroe he claimed that it was a recent build. Those folders are empty on any fresh install of windows 10
@@quadraforest Good to know.
He did say all his videos are gone.
I commented this too but he said it also deleted files after hitting save. Probably USB interface chip-level malware. Would be a good sample to send to microsoft and maybe they can reverse engineer it and add a detection to Windows Defender to detect that kind of stuff and stop it.
for a long time, scammers have found how to spoof the rom to report more storage than is available. there are some old programs designed to test this, but it takes hours, as it physically writes and checks the whole disk.
the first time i discovered this was buying a PNY drive from Walmart that was deeply discounted. the later ones were "too good to be true" drives like in the video... wish, ebay, and other sites that allow 3rd party vendors are subject to this scam
I don't think I've ever seen a less charismatic person make a video
Why dont you try constructive criticism instead of plain insults written with absolutes?
Like: "I think the Idea behind the video was cool and there were 2-3 moments that made me smile but if you work on your expressions a little more then maybe next time I'll give it a thumbs up."
D. Donald I didn’t say that because that’s not how I felt. And I didn’t speak only absolutes. I said “I don’t think” so there’s some room for doubt.
That was an example, please don't take it literally. I assume you get the point.
Dude, it DOESN'T hurt to have a script.
@Brad Miller okay, but at least it wouldn't hurt having a few talking points, and also write down facts like the price.
While that was interesting and you are pretty nice to look at, i will admit, i didn't quite feel like this was very informative. I was actually interested in how that file works and how they got the drive to show up that much space.
Here's a basic explanation as to what happened here:
There's likely a single read only MicroSD card reader soldered to the contacts inside the housing of the actual USB device.
The creator used a simple memory edit to "trick" windows into reading the drive as a custom set amount of storage (You can physically alter it via modification of the memory module, there's also software solutions that are much easier to get rid of (removed via flashing the drive))
Upon being plugged into a computer there's a custom built malware program (Which is not the focus of this channel) that runs immediately and silently installs itself into root directories.
Now what the actual malware does is unknown without a deep dive into the drive (Im surprised after a year this guy hasn't done a collab video with one of the software analyst channels on TH-cam by sending them the drive and having them analyse it) but I suspect it sends all your files to a host somewhere, and promptly deletes them. I'm guessing his test computer didn't have internet connectivity so it just deleted them as a kill switch.
@@asemov2707 Really great version, but pretty late.
@@sorriiez damn bro 10 months, but thanks @Asemov I was looking for a explanation too.
8:40 This happens because you click open instead of save. The file is stored in a temporary folder which gets deleted after you close the browser. If you click on save and place the file in the downloads folder, it should be there. The behavior of the files being removed is completely normal for what you are doing.
should have checked to see if it was calling to anything over the interwebs
🤦♂️🤦♂️🤦♂️ MS Edge removes "temporary" files as soon as you close the browser, so no malware from the flash drive, the flash drive got a moded bios on it to show you higher capacity then it really is
@Brad Miller as I did say the flash drive has a firmware slashed that gives wrong capacity, and due to that the files on the said flash drive will disappear once the total space taken by files exceeds the actual flash capacity, that's a no brainer if you actually know anything about PCs...
@Brad Miller and the exact same "issue" persists on all the clone phones
@Brad Miller the so called fake iPhones which are available on wish and so on
@Brad Miller go and rewatch the video and look at the pc screen, in regards of what he does as it's not at all what he says
Maybe he actually never had any private files on that computer. Because it's not his primary computer, so he might never had put any. Consider how low quality his video is, and that he can't remember the price, I wouldn't doubt he misremember and he actually never had any files on the computer from the start.
I love how he shows that downloading files into the temp folder then closing the browser causes the files to be deleted, but that's not malware, that's completely normal. Quite frankly I'm not sure if he just screwed up & accidentally opened up a blank install the second time & is just oblivious as hell as to why the temp folder deleted files, or if this is an active attempt to make a fake video for clout
Or is it that he hasn't got a clue what he'd on about!
An OS will not execute anything on the USB or medium unless user asked it to.
@@hariranormal5584 possible bad usb tho
@@hariranormal5584 untrue, a USB device can call itself a keyboard and do whatever it wants. no user interaction required
@@LC-hd5dc he should seen cmd/terminal then, it can't that fast that can't be seen at all.