Malware?

[CrippinDog3]

This is a malware, created me an encoded .py file in start menu of windows, i want explanations

[Blank-c]

What is the path and name of the file?

[Blank-c]

It'd be good if you can send screenshot.

[CrippinDog3]

Name pl.py, the pat is Start menu in Windows, it created exactly after i formatted the pc, it was all encrypted...

[Blank-c]

I have two things to say.

1) That file is empty. 2) Its not from this project.

[CrippinDog3]

[Removed wall of text]

[CrippinDog3]

Dont act dumb, im gonna report u to police if u dont admit

[CrippinDog3]

Its illegal to make virus

[Blank-c]

Can you first post this in pastebin and give the link instead of the huge wall of text here.

[CrippinDog3]

https://pastebin.com/NE09kji1

[Blank-c]

I see the file is obfuscated. But I can sincerely tell this is not generated by the grabber. You can see the whole source code.

[CrippinDog3]

Its ur grabber

[Blank-c]

Please delete the huge wall of text you sent too.

[CrippinDog3]

if some of this days i get hacked or smth im gonna make a report

[Blank-c]

You are free to look at the code. Please don't blame me for the file that you got in your start menu. This one is not mine.

[Blank-c]

Also the pastebin link is invalid.

[CrippinDog3]

It created exactly after i tried to install ur "grabber"

[CrippinDog3]

https://pastebin.com/NE09kji1

[CrippinDog3]

no its valid

[CrippinDog3]

https://pastebin.com/LDWMyZvT

[CrippinDog3]

here u go with another one

[Blank-c]

[CrippinDog3]

wtf they are removing

[Blank-c]

You can put it in a file and send

[CrippinDog3]

Edit: Put it in a file I said

[CrippinDog3]

You can put it in a file and send

ok wait a sec

[CrippinDog3]

https://workupload.com/file/SSqfvdMnwFu

[Blank-c]

Great. Also like I said, the code is not mine. I'll analyse the code and try to find out what it really is.

[CrippinDog3]

Ye

[Blank-c]

Also, when did you got (or noticed) this file?

[CrippinDog3]

Why do u need this information? Do u want to hide it?

[CrippinDog3]

huh?

[Blank-c]

See I am trying to help you. I need that info if you want to find out the origin of the file.

[CrippinDog3]

No, im not gonna say it, i know what game ur playing

[Blank-c]

Did you download the grabber from github or someone sent you?

[CrippinDog3]

here

[CrippinDog3]

github

[Blank-c]

Are you sure this is the repo? There are many clones of this same repo.

[CrippinDog3]

Yep, if im writing the issue here ._.

[Blank-c]

I have deobfuscated the code. Would you want a look at it?

[CrippinDog3]

Yea

[Blank-c]

Okay give me a minute.

[CrippinDog3]

So?

[Blank-c]

Here you go: https://gofile.io/d/2UgTiM

[Blank-c]

Its clearly not my grabber. Did you download any other stealer before?

[CrippinDog3]

send it here

[CrippinDog3]

in pastebin

[CrippinDog3]

i cant open it antivirus delete it

[CrippinDog3]

Its clearly not my grabber. Did you download any other stealer before?

never

[Blank-c]

I can't upload it to pastebin. Its filter prevent it.

[CrippinDog3]

Upload as .txt