Emissary Keylogger FUD
$53.00
The Keylogger builder comprises of two files– Emissary.exe and Stub.exe. Emissary.exe as shown below is the first released version of the keylogger builder. It requires a malicious user to input email address where the captured keylogs will be sent, the keylogger server name to build, a Fake Message that will popup when the server runs, and system options such as blocking AV sites, adding entry to startup and disabling administrative tasks such as the task manager and Registry editor.
An updated Emissary Builder v3.0 is also available with added features and functionalities such as:
- Supports Gmail, Hotmail and AOL email account
- FUD Runtime ScanTime.
- 1 year Autoupdate .
- FTP Backup
- Icon Changer
- Screenshot capture
- Execute Batch file
- Opening Webpage
- Start a Process
- Change Desktop Wallpaper
- Auto Startup Technique
- Adds Startup Registry entry
- Copy itself to Startup folder
- Sends logs in HTML format
- Can Spread via USB
- Download and Execute trojans
- Deletes Cookies
- Logs Clipboard
- Block Websites by modifying LocalHost FileDefault entries of this keylogger in Local Hosts file blocks the following security related websites:
- 127.0.0.1 virustotal.com
- 127.0.0.1 www.scanner.novirusthanks.org
- 127.0.0.1 scanner.novirusthanks.org
- 127.0.0.1 www.kaspersky.com
- 127.0.0.1 kaspersky.com
- Sends System Information such as:
- Username
- Machine Name
- Installed logical drives
- IP
- Installed Softwares.
- Disables the following Windows Features by adding registry entries such as:
- Task Manager
- Key: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem
Value: DisableTaskMgr
Data: dword:00000001
- Key: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem
- CMD
- Key: HKEY_CURRENT_USERSoftwarePoliciesMicrosoftWindowsSystem
Value: DisableCMD
Data: dword:00000001
- Key: HKEY_CURRENT_USERSoftwarePoliciesMicrosoftWindowsSystem
- Registry Editor
- Key: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem
Value: DisableRegistryTools
Data: dword:00000001
- Key: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem
- Control Panel
- Key: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer
Value: NoControlPanel
Data: dword:00000001
- Key: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer
- Folder Options
- Key: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer
Value: NoFolderOptions
Data: dword:00000001
- Key: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer
- Run
- Key: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer
Value: NoRun
Data: dword:00000001
- Key: HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer
- Firewall
- Key: HHKLMSystemCurrentControlSetServicesSharedAccessParametersFirewallPolicyStandardProfile
Value: EnableFirewall
Data: dword:00000000
- Key: HHKLMSystemCurrentControlSetServicesSharedAccessParametersFirewallPolicyStandardProfile
- Safeboot
- Task Manager
Deletes the following registry entry:
- Key: HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSafeBoot
- User Account Control (UAC)
- Key: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciessystem
Value: EnableLUA
Data: dword:00000000
- Key: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciessystem
- Right Click on Desktop and Windows Explorer
- Key: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer
Value: NoViewContextMenu
Data: dword:00000001
- Key: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer
- Disables the following Windows Features by adding registry entries such as:
- * Startup Folder is usually Documents and SettingsUsernameStart MenuPrograms
- * LocalHost is {System Directory}Driversetchosts
Be the first to review “Emissary Keylogger FUD”
You must be logged in to post a review.
Related products
Reviews
There are no reviews yet.