The LEGENDARY line "For educational purposes only"....💀😎🥃

When they say "educational purposes only" you know they ain't gon bs around 💯🔥

I was scanning the image files with my antivirus and my friend was laughing, now I am gonna send him that video :D

How to identify: if you don't have file extensions enabled, do not open ones that appear with an extension, also scrs and com files are basically executable but com is old.

I love Z security for this reason . Their video is well explained and organized and so easy to understand the process ❤

its scary how insecure windows is, thanks for sharing

This is cool but nobody would actually fall for this because windows will have that pop up saying that it’s an untrusted executable

I always look for the extension to be not ".exe" ... but the reverse character is new to me. So now I'll always also pay attention to filenames like "[filename] exe. [fileending]" So this would also work if you send .pdf files to other people...

Instead of turning off windows defender, you could add a exclusive folder or zone where the AV Wil not scan. I know some infostealers use this method

Many youtubers says it's an educational vdieo but it's educating and updating an hacker for more features 😂😂 like here if you like it😂😂

Wait!! After the user opening you should close the picture, not going to discord, as user will not stare at the BMW forever. :)

What's funny if you scan the virus on triage, it can log the bot's token the attacker is using and it can be used to login with a discord bot client and screw up their current operation Basically sending a good dose of karma to the attacker

thank you as a user how to identify such manipulated image

if an image is hacker thing and your image opener makes them hack you get rid of it as a image program reads out the image colors at their positions and voila no hacking on to you, and this goes also for your videos,,,

Thanks for guiding us for using VMware machine before practicing this work.

The fact that the name of these malicious files always end with "exe" can be helpful to spot them

brilliant steganography technique

I used to do this with a binder, it lets hyou select the file icon(jpeg/jpg icon), but the file extension is really an executable(.exe). Most folk have file extension off by default and fall for this, we used to go to chat rooms, pose as a woman, infect a lot of guys who were horny, caught a lot of child predators this way too, we usually wiped their hard drives. Moral of the story, google how to turn on file extensions, if the icon is a photo but shows .exe at the end of the file, never run it. You can even bind a .exe and .jpeg together, we had one time, where it showed a photo when you opened it but still ran the .exe. This was about 20 years ago, things were a bit different then. I explained this to show you an easy example how this trick is used in a real scenario.

I love these , I like to open the exe in ida pro get the token and take control over the bot/ channel it is. Noticing people use either discord or telegrams as a command and control center , the biggest mistake is hard coding api or keys in the exe

This hugely complex security exploit can be easily avoided in any operating system if you just DON'T HIDE EXTENSIONS FOR KNOWN FILE TYPES

This technique is actually very old, I knew about it in the 2000s, but before that no one discussed this matter

It might work until you have file extensions enabled or download it from a internet browser, there it will say "image.jpg.exe"

I'm pretty sure most email providers will pick this up as malicious.

super i like it thanks for the valuable information.

Why aren't file extensions enabled by default? It just makes sense...

Will it execute if I right-click on file to go to properties but I already have XNView MP with shell extension to show me image preview in explorer?

Won't Windows defender catch this if they click on the image??

As usual this kind of video don't make sense as Windows defender will stop the program before executing ....

Bro it took me few seconds to realize that it’s you. Looking great in beard.

How to remove it from the machine ???? this should also be told in the video....

can we use it for educational purpose on in mobile phones....??

I always change the settings to show the files extension and show the hidden and protected windows files since the age of windows XP, so clickbait won't work , why don't they make these setting default? Hiding files extension will just prevent people from learning some simple thing

i write !help but nothing works

When I clicked it then: "Oh no! You have no power here" Operating System: Arch Linux BTW

Just embed the reversed Base64 of your payload after the 2nd byte in any jpg file. Image parsers will ignore it as Metadata. And your image won't look suspicious. No need for exe renaming tricks.

When will this guy actually teach some valuable information, I am actually surprised on how he is this well known in the security field.

It's been ages men😢

during my intern i was victim on this , the usb is encrypted

For one trillion years I've been trapped in my own decaying dimension, waiting for a new universe to call my own.

Wht should be do if we want more sessions

me watching this after downloading hundreds of memes from discord

Thank you

Downloading a tool that will do all the work is kinda pointless. I thought you where gonna go through the theory.

yeah, it's working but windows firewall detected (can u make video for win firewall to avoid malware in image)

Wow! This has been insightful to me about the trojan. Thanks a lot lot more, very thankful sir... Any way i have a question, will the victim PC always be connected to the server immediately when the victim is connected to the internet, or it will require the user to open the trojan file.

Perfect zsecurity guys

Once the hack is done, I have the information about the victim machine so now my question is will the firewall be closed on the victim machine or is there nothing to do with it...?

How are you managing to keep your KZbin channel covering hacker issues? I had a channel with several hacker-related topics and KZbin, after I had 200 videos, deleted my channel. How can you keep the videos?

so this is what ntts (no text to speech) showed as an example of a discord rat

Taking your course on udemy, thanks!

new fear unlocked Amazing video thanks a lot

This is awesome 🎉add more like this,,, amazing

Ah yes. The ultimate excuse. “For educational purposes only”

Many softwares like Telegram has auto download what I hate cause so many strangers/scammers messaging you with image messages. You have to disable downloads settings after setup or every installation but for the safety that settings must be disabled as default!

The bit starts and creates the session but no commands works

u are realy genious bro

does it work on smartphones also?

Work on phone?

@zSecurity: What about emulator does are application.exe but the majority of them are not virus and the reason they are is to make sure the game work when you used the emulation since you need executable file to run the game.

Nice but not all the command works , any solution ?

Won't this be detected by windows defender when I run it? I'm really scared of that virus now. I have never turned on the "Hide extension for known file types" but I still scared.

The biggest lie "This Video is for Educational Purpose Only"!

injected PIC, its new for you?

Please ask them to keep waiting? I have dial up and it said I've got 8 months left until the image is completely downloaded!

im using clinet built and it keeps telling me windows cant fijd this it opens the image but dosent make it execute

me with image extensions turned on:

ahora si me aseguro que mi novia virtual sea mia

Know the difference between steganography and evasion

im gonna make this and put it on my friends and rickroll them 💀

What is the useful app to avoid hackers?

This worked soo much on my school project i got A+ thanks

Not work, only works on Host own internet connection, vm dont pick it up

but when i want to copie the bot token they say entre the password what is the password plllls

when someone opens it i can only do 2 commands before it just stops working can i have help?

Z security waiting for us to click this video

My brother is going to have some troubble finding this one 😂

Windows Defender deletes it easily, share other ways to hide the file from Defender.

i think the cons are the space of the file , it can be spotted

Educational purposes only ☠️

Will Anti Virus on windows PC detect the backdoor when the user try to download and view it?

When i open up the script with the foto its says windows cannot find backdoor.exe make sure you typed the name correctly And then try again

Can this image affect android also ??

Will it work if I have firewall to block new connection

yoooo thanks so much

So the victim needs winrar installed for the sfx to work ?

is there a way to mask the extension from .exe to jpg or something else? i tried `mv example.exe example.jpg`. but it didn't work as it opens with image viewer on windows.

Flipkart is very scandalous

i reconment bitdefender for antivirus and zone alarm for windows mac and maybe lenix

.exe is too beginner that i automatically ignore when i enable extension in Windows Explorer. I prefer to have virus in an image file that i cannot complain

Maybe show to add some persistence? With powershell add on startup

Does it work for android phone ? If it's work, then i willing to pay for the lesson

That bot was working for me but now it is not idk why

Is it samely works to target mobile phone?

why is the gernerated URL not there

Dicord doesnot replay me when i write help or any other command in new session

LET ME UNINSTALL DISCORD.

Which picture? Here an executable file is opened which executes an SFX loader which in turn executes two subprocesses, namely the supposed image and an executable file containing malware. I know that the point is to get the user to open the supposed image by disabling the extension in Windows. Sorry but the headline is more clickbait.

I ran a script just like this tested it only on myself. I was wondering if I send it to my Tarket in say in a Gmail once they click it is it executed?

if you have window defender on will it still download and execute?

Does it work on android?