Lemon8Lifestyle community

Automatically translated.View original post

FreedomHack 󱢏
FreedomHack 󱢏

3840 followers

Follow
Follow
Follow
Hackers use PyInstaller to hide Xworm malware's images(0)
1/2

You may also like

🛡️ The GIS-R10 Controller — Enterprise-Level Power

🛡️ The GIS-R10 Controller — Enterprise-Level Power

Guest InternetGuest Internet
SIEGEX is all CHEATERS & HACKERS😭

SIEGEX is all CHEATERS & HACKERS😭

PhasmaPhasma
39
Tools and sites I use as a cybersecurity student 🌸

Tools and sites I use as a cybersecurity student 🌸

LexiStudiesLexiStudies
107
SECRETS Hackers DON’T Want You to Know!

SECRETS Hackers DON’T Want You to Know!

techgirljentechgirljen
424
Websites You NEED to Pass Your College Courses

Websites You NEED to Pass Your College Courses

BeautyBeauty
285
See more on the app
See more on the app
See more on the app
0 saved
1

Hackers use PyInstaller to hide Xworm malware

Hackers use PyInstaller to hide Xworm malware inside and then fake it as a fake update to fool the victim.

According to a report by the SCWorld website, a research team from Point Wild has detected hackers using PyInstaller's developer tool to hack Xworm malware inside harmless files. Hackers take the files they use as carriers and insert the malware code with PyInstaller to create an Executable file from the script file. This will result in the victim opening the file feeling unnoticed, while in the background the malware is installed according to the inserted script, while the malware insert can emanate the detection system. The bait machine, too.

Within the code, the research team detected a Dummy code called "_ IAT _ PHANTOM _ FIX," which is expected to resist anti-analysis by malware analytics tools, and also to shut down the Windows virus scan system called Antimalware Scan Interface (AMSI) with the use of AMSI Memory Patching.

For the payload, hidden within the file, after it is released from the carrier file, it hides inside the% LOCALAPPDATA% folder on the victim's system under a file name that looks like a common file, such as "Win.Kernel _ Svc _ AJ8iOw.exe," and hides it. The malware file itself is mixed with other system files by the XWorm V7.4 malware. After successfully embedding it, it will contact the C2 or Command Control server with an AES encrypted Secret Key to receive attack commands. Attacking the victim's system ranges from stealing passwords, smuggling files on the machine, secretly using a webcam to spy on the victim, to using the victim's machine as part of a larger system shooting or DDoS (Distributed Denial-of-Service).

# Trending # Lemon 8 Howtoo # lemon 8 diary # Pylnataller # freedomhack

4 days agoEdited to

... Read moreจากประสบการณ์ส่วนตัว ผมมักจะเห็นข่าวแฮกเกอร์ใช้เทคนิคขั้นสูงในการปลอมไฟล์เพื่อหลีกเลี่ยงการตรวจจับมัลแวร์ การใช้ PyInstaller เป็นวิธีที่แฮกเกอร์เลือกมาเพื่อซ่อนมัลแวร์ Xworm ซึ่งเป็นภัยร้ายแรง เพราะมันทำให้ไฟล์มัลแวร์ดูเหมือนไฟล์ธรรมดาที่ปลอดภัย จึงทำให้ผู้ใช้ทั่วไปเปิดใช้งานโดยไม่รู้ตัว สิ่งที่น่ากังวลคือมัลแวร์ตัวนี้มีการปิดระบบสแกนไวรัส AMSI ใน Windows ด้วยวิธี AMSI Memory Patching ซึ่งทำให้มัลแวร์นี้แทบจะซ่อนตัวได้เนียนกริบ อีกทั้งยังใช้โค้ดลวงชื่อ "_IAT_PHANTOM_FIX" ที่ช่วยให้แฮกเกอร์ตรวจจับและหลบหลีกการวิเคราะห์โค้ด ทำให้ผู้เชี่ยวชาญด้านความปลอดภัยต้องใช้วิธีวิเคราะห์ที่ซับซ้อนมากขึ้น ในขั้นตอนการทำงาน มัลแวร์จะซ่อนตัวในโฟลเดอร์ %LOCALAPPDATA% และใช้ชื่อไฟล์ที่ดูเหมือนไฟล์ระบบปกติ เช่น "Win.Kernel_Svc_AJ8iOw.exe" เพื่อหลอกให้เหยื่อไม่สงสัย ซึ่งเทคนิคการซ่อนไฟล์แบบนี้ทำให้การตรวจพบไฟล์มัลแวร์ยากขึ้นมาก ความสามารถของ Xworm V7.4 ไม่ได้จำกัดแค่การขโมยรหัสผ่านหรือข้อมูลส่วนตัวเท่านั้น แต่ยังสามารถเปิดใช้งานกล้องเว็บแคมเพื่อสอดแนม และใช้คอมพิวเตอร์ของเหยื่อในการโจมตีระบบอื่น ๆ ผ่านการโจมตีแบบ DDoS ซึ่งเป็นอันตรายอย่างมากสำหรับทั้งบุคคลและองค์กร จากประสบการณ์ ผมแนะนำว่าผู้ใช้ทุกคนควรระมัดระวังในการดาวน์โหลดและเปิดไฟล์โดยเฉพาะไฟล์ที่ได้รับจากแหล่งที่ไม่น่าเชื่อถือ รวมถึงต้องอัปเดตซอฟต์แวร์และระบบความปลอดภัยอย่างสม่ำเสมอ และใช้โปรแกรมแอนตี้ไวรัสที่มีความสามารถตรวจจับภัยไซเบอร์สมัยใหม่ที่สามารถจับพฤติกรรมมัลแวร์แบบนี้ได้อย่างมีประสิทธิภาพ ยิ่งในยุคที่แฮกเกอร์พัฒนาเทคนิคหลบเลี่ยงมากขึ้น ผู้ใช้ต้องเพิ่มความรู้และความระมัดระวังสูงสุดในการรับมือภัยคุกคามดังกล่าว

Related posts

🛡️ The GIS-R10 Controller — Enterprise-Level Power
🚀 The perfect hotspot solution for internet speeds of 400 Mbps! Designed for medium to large hospitality businesses like hotels, resorts, campgrounds, RV parks, marinas, and more, the GIS-R10 makes it easy to provide WiFi access as a complimentary service or a paid option. 🏨🌴🚐⚓ ✨ Why business
Guest Internet

Guest Internet

0 likes

SIEGEX is all CHEATERS & HACKERS😭
Why is this game full of cheaters and hackers and bugs🤷‍♀️ #siege #rainbowsixsiege #gaming #streamer #foryou
Phasma

Phasma

39 likes

A young woman with long dark hair, wearing a pink satin shirt, smiles at the camera while sitting at a table. Overlay text reads: 'Tools and sites I use as a cybersecurity student to progress my skills and keep me interested in studying'.
A screenshot of 'The Hacker News' website, displaying various cybersecurity news articles from January 2025, including topics like vulnerabilities, malware, cyber espionage, and AI jailbreak methods. An ad for Zscaler and a banner for CIS Hardened Images are also visible.
A screenshot of the O'Reilly learning platform, showing various books and expert playlists related to AI, engineering, and data. Overlay text highlights the subscription cost ($50/month or $499/year) and its value for accessing books and live events.
Tools and sites I use as a cybersecurity student 🌸
#cybersecuritystudent #cybersecurity #techgirlie
LexiStudies

LexiStudies

107 likes

The image shows a keyboard with a fingerprint icon, overlaid with "OUTSMART HACKERS" and "Secrets they don't want you to know," serving as the title for a guide on cybersecurity.
This image explains hackers use software to guess passwords and advises creating long passwords with a random mix of letters, numbers, and symbols to defend against such attacks.
The image warns that hackers try common passwords and advises users to defend themselves by avoiding easy words/phrases and not reusing passwords across different sites.
SECRETS Hackers DON’T Want You to Know!
After hackers got into my Facebook account and completely erased it, I dusted myself off and started a deep dive to understand why and how hackers work. The best way to protect yourself is to outsmart them. Here are 5 secrets Hackers DON'T want you to know! Share this with everyone! #lemon8pa
techgirljen

techgirljen

424 likes

A laptop with a cloudy sky wallpaper and a white cup with a red logo. Text overlay reads: 'Free Websites That Saved My GPA AND MY SANITY Sharing So You Don't Struggle Too'.
A laptop screen displays Yahoo search results for 'Quizlet'. An overlay describes Quizlet as a free flashcard tool for memorizing terms, definitions, and formulas, making studying feel like a game.
A laptop screen displays Yahoo search results for 'Unriddle.ai'. An overlay describes Unriddle.ai as a free tool that breaks down notes, articles, or assignments to aid understanding of long readings.
Websites You NEED to Pass Your College Courses
Y’all college is hard enough without trying to figure everything out on your own 😩 So here’s my list of websites that actually helped me pass my classes like, these were in my survival kit. I’m not gatekeeping 🫶🏽 Quizlet When I needed to memorize terms FAST. I used it for flashcards, and the matc
Beauty

Beauty

285 likes

A hand holds a pink iPhone with text 'Tech 101 For Beginners' and 'Tips to help Non-Tech Savvy Users,' accompanied by laptop and phone app icons, against a brick background.
A pink iPhone in its box, illustrating the tip to 'Keep Your Devices Updated' with text explaining why updates help and advising to enable automatic updates.
An iPhone screen displaying app icons and display settings, accompanying the tip to 'Use Strong, Unique Passwords' with reasons why and advice on using combinations and password managers.
Tech Hacks For Beginners 📲💻😬
I have some great tips for non-tech savvy tech users. I know these tips will help you learn your tech more quickly and effectively. 1. Keep Your Devices Updated Why It Helps: Updates often contain security patches and improvements that help your device run smoothly. Tip: Enable automatic updat
Joy 📚

Joy 📚

283 likes

WARZONE HACKERS
Warzone is full hackers and call of duty does not care #warzone #hacker #memesdaily #memes🤣 #gaming
DUSTINMYRQ ™

DUSTINMYRQ ™

5 likes

A monitor displays the Martin AI assistant dashboard with sections for to-dos, reminders, calendar, and chat, set on a desk with a keyboard and plant, illustrating the phrase "Say what you need, it gets it done."
The Martin AI assistant dashboard is shown, featuring to-dos, reminders, calendar, inbox, and a chat interface for sending schedules, emphasizing its ability to use voice commands for tasks like texting and setting reminders.
The Martin AI assistant dashboard displays to-dos, reminders, calendar, and an inbox with emails, highlighting its function to remember and track information across various platforms without repetition.
Your to-do list just got a personal manager
You know when you have too many tabs open in your brain? This app is like closing all of them... at once. Martin is your Al assistant that actually works like a real one. Need to text someone, forward notes, set reminders, or manage your day? Just tell Martin. It connects with your inbox,
Reverelia

Reverelia

366 likes

Just An FYI This Is How So Many People are Getting Hacked!!! Plz Don’t Fall For Message Like These!!! it’s A Fake Account!!! #fakeaccount #hackers
MaryBell

MaryBell

2 likes

Hackers
How call of duty has me #call of duty #hacker #warzone
Stevie_Wonders

Stevie_Wonders

1 like

WARNING TO 2.5B GMAIL USERS. Hackers are continuing to target you. Here’s what to do Follow @cybersecuritygirl for more tips #google #gmail #tips #news #techtips
Cybersecurity Girl

Cybersecurity Girl

507 likes

Blue jackets hockey is on the riseeeeeeee
peyton

peyton

1 like

PSA PSA PSA ‼️ #fyp #hackers #facebook #scammers #viral
Kay’s House ✨

Kay’s House ✨

2 likes

BIG Holiday Costco Shop & Haul | Anchorage, Alaska
vanditsv

vanditsv

2 likes

A message to Minecraft hackers…
You should join the server #minecraft #gaming #fyp
BendersMC

BendersMC

13 likes

These Hackers on Marvel Rivals getting crazy!
#marvelrivals #twitchtv #followme #Hackers #marvelfunny
MisFit Miracles

MisFit Miracles

2 likes

Don’t Use Airport USB Chargers!
TSA is now advising NOT to use Airport USB Chargers. Bring your own USB charging bricks. "Hackers can install malware at USB ports (we’ve been told that’s called 'juice/port jacking'). So, when you’re at an airport do not plug your phone directly into a USB port. Bring your TSA-compl
Destination & Travel Junkies

Destination & Travel Junkies

152 likes

warzone hackers be mad little babies
#cod #ps5 #gamergirl #warzone #fuckhackers
Twilightvile

Twilightvile

2 likes

Cryptocurrency hackers tricks to know about
Cryptocurrency is nowhere near safest people make make it sound. There are programs that allow them to hack your wallet and drain it dry consider this educational to be aware that there is an issue like that out there put you on step ahead of the hackers. Let's shine a light on this type of dec
Dragonak1754

Dragonak1754

0 likes

Look world deactivated all my Instagram accounts cause I was at a 1000 friends to go go live and removing all my legal paperwork and complaints tampering with federal evidence Elon Musk and Donald Trump and Mark Zuckerberg and Morehouse parish sheriff department officers and Mike Stone Tubbs and ha
glentrump359

glentrump359

0 likes

A woman wearing a black outfit and a large pearl necklace smiles while sitting in a room with rows of green chairs. Other individuals are visible in the background. The image features Lemon8 branding with the username @angelawrivers.
Hackers hijacked antivirus features to install mal
Hackers hijacked antivirus features to install malware - here's what we know https://www.yahoo.com/tech/cybersecurity/articles/hackers-hijacked-antivirus-features-install-140500891.html #hackers #malware #cybersecurity #antivirus
angela1957

angela1957

1 like

A woman with dark hair and a light orange top smiles at the camera. The background features a wooden wall. Watermarks for Lemon8 and TikTok Lite with the username @angelawrivers are visible.
Hackers are using Google.com to deliver malware
Hackers are using Google.com to deliver malware by bypassing antivirus software and here is how to stay safe https://www.msn.com/en-us/news/technology/hackers-are-using-google-com-to-deliver-malware-by-bypassing-antivirus-software-here-s-how-to-stay-safe/ar-AA1GIDSi?ocid=sapphireappshare #hackers
angela1957

angela1957

0 likes

scammers and hackers beware
Hudson
cercofhell

cercofhell

27 likes

Free Games! ✅
Free Games! ✅ Yes it’s trusted by many people and it’s the best in the industry! And no malware or virus! Follow for more value! 😉 #freegames #pcgamers #steamgames #gamer #tech
Tech With Unes

Tech With Unes

8 likes

Taco Tuesday 🤯 Admin Abuse ⁉️ #stealabrainrot #robloxstealabrainrot #roblox #neoskittles
NeoSkittles

NeoSkittles

6 likes

HACKERS IN THE BETA
Blackops 7 has hackers already…. #hacker #blackops7 #bo7
Goofstha

Goofstha

1 like

#yungblud
watch4hackers

watch4hackers

8 likes

Look world just locked my new Facebook account right now cause I'm showing complaints and legal paperwork I'm filling right now Look world at 2:00 am am Jamie Winfield and Tracy Winfield and Dre Washington and Randy Tappin and Christopher Thirdkill and IT drinking and smoking and using drug
glentrump359

glentrump359

0 likes

Hackers Be Like:
#fypage
AidenIsMyself

AidenIsMyself

0 likes

A smartphone displays a message asking God to unblock it due to hackers. A patterned pad and colorful items are in the hazy background. The image includes Lemon8 branding and a username.
God, please unblock this android, hackers have in
Olga Ledbetter

Olga Ledbetter

37 likes

Look world deactivated all my Instagram accounts cause I was at a 1000 friends to go go live and removing all my legal paperwork and complaints tampering with federal evidence Elon Musk and Donald Trump and Mark Zuckerberg and Morehouse parish sheriff department officers and Mike Stone Tubbs and ha
glentrump359

glentrump359

0 likes

A Snapchat interface displaying various story creation options, including 'My Story Just for Friends,' 'Create a Private Story,' and 'My Story Public.' It also highlights 'Snapchat+ New Features' for 'My Pet, Car, and Home and more!' and a 'Spotlight' feature.
Look world on my new Snapchat right now want let anyone see my stories rejecting all of them Elon Musk and Donald Trump and Mark Zuckerberg and Morehouse parish sheriff department officers and Mike Stone Tubbs and hackers everyday all day and night and morning harassing me on all my social media ap
glentrump359

glentrump359

0 likes

I wanted a real project I could actually show, not just talk about. So I used Atoms ⚛️ Check it out here: https://tinyurl.com/3xzc8xbe It feels like having a whole AI team helping me: 🔍 they do the deep research first 🏁 then Race Mode builds different versions so I can compare 👥 I just pick
emilie.studygram

emilie.studygram

19 likes

Hackers, AI and Cyberattacks
https://www.techradar.com/ai-platforms-assistants/if-hackers-can-use-ai-to-automate-massive-cyber-attacks-terminator-robots-are-the-least-of-our-problems #ai #hackers #cyberattacks #robots
angela1957

angela1957

2 likes

⚠️ The Hidden Dangers of Public Wi-Fi Free Wi-Fi feels convenient, but it can be a trap. Hackers can create what’s called an “evil twin” network—a fake hotspot that looks legitimate. The moment you connect, they can access your data, passwords, banking info, and private messages. Listen
Dannah Eve

Dannah Eve

82 likes

Kalebdavis19

Kalebdavis19

1 like

Hackers are using tricks & steal financial info.🌸🍋
SECURITY TIPS: Be careful from hackers they use multiple different types of software and tricks to steal data from computers, cell phones or other devices to steal your data, financial information and personal details. When they hack via computer systems Showing they are from Microsoft Security Ale
Mujahid Bakht

Mujahid Bakht

6 likes

Ban Hackers
Vinicius Jr 🇧🇷 #fcmobile #eafcmobile #fifamobile #fcmobile25 #eafc
manuelofficial_13

manuelofficial_13

1 like

Look world on all my Instagram accounts right now for 7 days rejecting all my reels and posts and won't let me share my posts Elon Musk and Donald Trump and Morehouse parish sheriff department officers and Mike Stone Tubbs and hackers showing favoritism and discriminate against Glen Nickolas Ak
glentrump359

glentrump359

0 likes

Day 3 of 31: 31 days to a safer you. Did you know hackers can turn on your webcam without you ever noticing? 🎥👀 it happens when malware sneaks onto your device and gives cybercriminals access to your camera. That means your most private moments could be exposed. ✅ Here’s how to protect yours
Cybersecurity Girl

Cybersecurity Girl

21 likes

when ur attorney is on a roll
darkangel1984666

darkangel1984666

1 like

WARNING: DO NOT SEND/RECEIVE/ BUY/SELL
WARNING: DO NOT SEND/RECEIVE/ BUY/SELL/CONVERT ANY CRYPTO RIGHT NOW There is a currently a major attack spreading through the crypto ecosystem that can change the addresses you're sending to. Hackers are secretly rerouting funds to their wallet instead of your destination. Get your money off
Apefaced Alpha

Apefaced Alpha

0 likes

Most small businesses believe they’re too small to be hacked… but that’s not how cyber risk works. In today’s connected world, your business doesn’t stand alone. You rely on vendors, payroll systems, cloud platforms, CRMs, IT providers, to run your operations. But here’s the truth many people ov
Abby❤️💎

Abby❤️💎

0 likes

10 things I NO LONGER do as a CYBERSECURITY EXPERT 1. Hand out my real birthday, name, phone number etc online 2. Create online accounts I don’t need 3. Post vacation pics while I’m still away 4. Believe free Wi-Fi or apps is actually free 5. Save my logins in Notes or browsers 6. Use my mom’
Cybersecurity Girl

Cybersecurity Girl

6 likes

Look world still on my YouTube channel right now removing my YouTube channel right now and on my Facebook account right now pausing my lives since 4:44 am these meth heads going crazy Elon Musk and Donald Trump and Mark Zuckerberg and Morehouse parish sheriff department officers and Mike Stone Tubb
glentrump359

glentrump359

0 likes

Marley Scotch

Marley Scotch

0 likes

An Instagram screen shows a message stating, "You can't share reels now because your account activity may not follow our Community Standards." Below, a post by "teegonnabetee" displays four women, one holding a baby, with a "Lemon8" watermark.
An Instagram screen displays two identical messages: "You can't share reels now because your account activity may not follow our Community Standards." Below, an Instagram post features a young person with blonde hair sitting on a bench, with a "Lemon8" watermark.
An Instagram screen shows a list of accounts, some active with chat counts, and several marked as "Deactivated," including "camel.5673807" and "kkbmikestone." A "Lemon8" watermark is visible at the bottom.
Look world on all my Instagram accounts right now for 7 days rejecting all my reels and posts and won't let me share my posts Elon Musk and Donald Trump and Morehouse parish sheriff department officers and Mike Stone Tubbs and hackers showing favoritism and discriminate against Glen Nickolas Ak
glentrump359

glentrump359

0 likes

See more