1
Assembly - Embedded / Re: [FASM+PB] Democode for Bank Robbing ;-)
« on: January 27, 2013, 09:28:05 pm »Quote
So I can use this to hack banks from the ex-USSR?
No, you can use this to hack client of banks from the ex-USSR
Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
No, you can use this to hack client of banks from the ex-USSR
2
Assembly - Embedded / Re: [FASM+PB] Democode for Bank Robbing ;-)
« on: January 27, 2013, 12:56:57 pm »
Also what kind of a fucked up bank uses applets for internet banking!
Many banks from ex-USSR use "iBank". iBank uses applets for internet banking.
BIFIT is company, what developed "iBank" http://www.bifit.com/ru/ - (in russian)
Many banks from ex-USSR use "iBank". iBank uses applets for internet banking.
BIFIT is company, what developed "iBank" http://www.bifit.com/ru/ - (in russian)
3
Assembly - Embedded / Re: [FASM+PB] Democode for Bank Robbing ;-)
« on: January 26, 2013, 11:52:51 pm »
What is the goal/action/point of this app?
Steal key from bank java applet and show you it.
Steal key from bank java applet and show you it.
4
Assembly - Embedded / Re: [FASM+PB] Democode for Bank Robbing ;-)
« on: January 26, 2013, 10:40:55 pm »
Then more simple: it`s banker(trojan horse for bank robbing) what has not rootkit but has messageboxes in main functions
5
Assembly - Embedded / Re: [FASM+PB] Democode for Bank Robbing ;-)
« on: January 26, 2013, 10:27:50 pm »
It simple one what inject DLL in Java SE (only x86) memory space then save filekey, screenshot and keypress. You can test it on this site - https://my.ukrsibbank.com/ua/sme/operations/staraccess/login/. But you haven`t key. It`s not problem because all real keys for iBank has signatire iBKS in begginning of file (you can create in text exitor this "key". Of course, this "key" is invalid but for test it`s ok). This program has not user interface(only icon in taskbar with "Exit" option).
Firstly program show messagebox with text "I`m found running iBank2`s login window"
Then you open your bank key and write your password what my injected DLL save in own folder. When you close "iBank2`s login window", then you will see one of these message: on good way - "Now user have closing iBank2`s login window.\nNow bank is robbed! :-)" or in bad way - "Now user have closing iBank2`s login window,\nbut it don`t use file key"(if user logged in by USB token or another sucks). In good way this demo open forder with 3 files: screenshot, keystore and keylog.
Firstly program show messagebox with text "I`m found running iBank2`s login window"
Then you open your bank key and write your password what my injected DLL save in own folder. When you close "iBank2`s login window", then you will see one of these message: on good way - "Now user have closing iBank2`s login window.\nNow bank is robbed! :-)" or in bad way - "Now user have closing iBank2`s login window,\nbut it don`t use file key"(if user logged in by USB token or another sucks). In good way this demo open forder with 3 files: screenshot, keystore and keylog.
6
Assembly - Embedded / [FASM+PB] Democode for Bank Robbing ;-)
« on: January 26, 2013, 09:22:29 pm »I coded some funny demo what robbing a bank
. (iBank software from ex-USSR)Algorithm:
* identify software «iBank 2» in JavaVM SE
* inject DLL in JavaVM SE
* save all keypass in file by keyloggers
* splice WinAPI GetFileAttributesExW
* in new spliced GetFileAttributesExW finding signature "iBKS" on beginning of file.
* save results of work «iBank 2» (screenshot, keylog, keystore)
* open "robbed" in folder
SourceCode In FASM + PureBASIC
Sourcedode in Pastebin: DLL, EXESorry for my English.
Pages: [1]