Categories > WeAreDevs > JJSploit >
JJSPLOIT POSEE Trojan-PSW.Agent?
Posted
Hola, tal vez es raro ver a un latino en un server de gringos pero al escanearlo con diferentes antivirus el JJSPLOIT Me a dicho que detecta Trojan-PSW.Agent cosa que revisé y vi que ese programa es robo de credenciales y cosas raras. Igual revisé y ejecuté el inyectador y a los pocos dias me atacaron las cuentas, OJO NO ESTOY CULPANDO A JJSPLOIT. Pero quería saber si me recomiendan ese o que usan o si les a pasado.
Cancel
Post
Added
Ojo no culpo a jjsploit pero si queria saber si es algo usual o deberiamos preocuparnos. O si es un falso positivo.
con esto no quiero denigrar a nadie.
Cancel
Post
No le voy a decir nada mas que.
Replied
Version 8.10.14 contains a virus: Trojan.Win64.Agent Version 8.10.15 contains a virus: Trojan-PSW.Agent This is suspicious
Comments
EndWhite 0 Reputation
Commented
el unico que a detectado problema a sido Virustotal con el .msi
Puse el JJSploit_8.10.15_x64_en-US en Virustotal y salio Trojan-PSW.Agent
siento que es un falso positivo. Aun así agradecería que me dieras un inyectador, y gracias por resolver mi duda amigo muchas gracias :)
Tester999 0 Reputation
Commented
I just downloaded the latest version.
And yes, there was something like that.
EndWhite 0 Reputation
Commented
La version que uso es
8.10.15 descargada en esta misma pagina.
Tester999 0 Reputation
Commented
Sorry, I had 8.10.14 installed until I downloaded 8.10.15.
Yes, you were right, there was such a virus.
EndWhite 0 Reputation
Commented
Hay otro usuario que dice que tambien le lanza positivos e instala otras cosas. Nos podrías decir donde descargamos la version 8.10.14?
Cancel
Post
Replied
Same thing here, i just downloaded the newest version (8.10.15) but windows defender blocks it. Kinda weird but then i decide to put it in tri.age and wow there's a lot of weird things in the new version, the previous version didnt have any suspicious stuff so idk
Comments
EndWhite 0 Reputation
Commented
The last time I downloaded it I downloaded something that said "Joke" and I checked and it made the PC slow and it changed the resolution to 800x600 🙃
Cancel
Post
Users viewing this thread:
( Members: 0, Guests: 1, Total: 1 )
Comments
RealNickk 10 Reputation
Commented
It would make sense that you are suspicious. For more information, view Jon's thread about false positives: https://forum.wearedevs.net/t/572
I also conducted malware analysis on JJSploit and could not find anything suspicious: https://forum.wearedevs.net/t/36742
Also make sure you are only downloading JJSploit from wearedevs.net. Other websites claiming to be an official download should not be trusted.
Exploits getting flagged as malware is a normal thing and tools such as VirusTotal and Windows Defender lack proper utilities to accurately identify malware. In this case, they are simply false positives.
1