Tool to evade Antivirus With Different Techniques
DO NOT UPLOAD TO VIRUSTOTAL!!!
VirusTotal cooperates with many antiviruses and shares its up-to-date database.
In order for this crypter to work for a longer time, you must follow this simple rule.
- Added AMSI Bypass
- Added RUNPE
- Added support for 32 bit injection
- Added support for 64 bit injection
- Ability to clone Assembly
- Ability to execute your own Encoded Powershell Commands
- Ability to Disable Amsi even if you are not injecting .Net Paylaod
- Ability to choose Payload type if it Native or .Net
- Added New injection Paths
- Notify When stub Executed on Macihne 2 Methods Impelmented
- using Telegrem
- using Socket TCP/IP server
- Fixed SomeBugs
- New Ui
- Mutex to prevent the process from running Multiple times
- Simple .Net Obfuscator
- Melt Function for the exe to Delete it self after injecting the payload
- File Pumper
- Anti VM Payload won t execute in Vms
- current last version
- Download Crypter from Releases
- choose File and Generate Encryption Key
- Upload Loader.txt in raw url Ex(pasteBin)
- put the url in the build Section and Build
I don t know how much This will stay FUD but will be updating it always and adding New Injection and new Attacks to it
Simple Note to avoid Detection Completely Use .NET obfuscator like Smart Assembly
https://www.youtube.com/watch?v=caev1GH8PzE
- Add Ability To execute your own powershell code
- option To Disable Amsi from powershell
- Notify Methods When Code executing on Machine
- Mutex to prevent Porcess from running Multiple times
- Delete it self
- File-Pumper
- Anti-VM
- Undetected Binder
- HTTP Server for Delivering Payloads
- Loading Payload locally instead of loading our shellcode from url
- adding Different Encryption Methods
- Linux Support
Star this Repo if you like the tool
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent