Categories > Exploiting > WRD Exploit API >

So wearedevs, explain this!


PolarsReturn

Polar

Posts: 2

Threads: 2

Joined: Oct, 2021

Reputation: 0

  • 0

Posted

https://www.virustotal.com/gui/file/ab0eae2b51ae51b5b4e72ca3f3cee25905c156fe93885f8e31988b7572d87555

 

why does it come back as a 40 eh?

Lua learners

shayne

Some Ex-Father

vip

Posts: 149

Threads: 13

Joined: Apr, 2018

Reputation: 7

  • 0

Replied

Oh nooo!!! not our dll!!! It's been exposed!!! n:crys: 

But nah, That site some reason flags the API. I can't explain much to you as I hardly know how API works. 

This should explain it more. https://www.hybrid-analysis.com/sample/ab0eae2b51ae51b5b4e72ca3f3cee25905c156fe93885f8e31988b7572d87555

alot of exploits API will be flagged by scanners. (that I'm fully aware of. again, don't take my word for it. let a staff or some dev explain this better haha.)

Custom Pc Specs: Corsair 4000D, 850W gold, Ryzen 7 3700x, RTX 2070 super (Both OC), Corsair Hydro H100x, 2x8GB 3000 Ram, B550 Pro4, 1TB m.2 and 2x2TB HDD's.

Posts: 137

Threads: 17

Joined: Aug, 2021

Reputation: 10

  • 0

Replied

It's a false positive since manipulates roblox and uses game injection 

Owner of altbot

#1 roblox alt generator https://altbot.xyz/

Thx immune, boyke, delta, vilictus, rexi and hiroku for the rep <3

ThatPhoenix

give me noticed

Posts: 1885

Threads: 43

Joined: May, 2020

Reputation: 12

  • 0

Replied

We're fully aware that our API is flagged as a virus/malware. WRD API is not malware, anti-viruses false detect us because our methods of exploiting roblox (memory editing) is usually used by viruses, and that is why anti-viruses flag us.

Bones

deez nuts

Posts: 373

Threads: 10

Joined: Mar, 2021

Reputation: 11

  • 0

Replied

straight from r/robloxhackers

Who's Deez?

OpenGamerTips

H3x0R (true virgin)

Posts: 2183

Threads: 131

Joined: Feb, 2020

Reputation: 21

  • 0

Replied

The main reason for this is that the API gets flagged for memory manipulation via the Windows API. In the API's method: to inject a DLL, you have to call LoadLibraryA in a new thread on the target process with the DLL path as an argument. DLL injection is used commonly in malware to evade detection by either being processless or to exploit a vulnerability in an executable (This is what game hacks do). The DLL (Not the API) itself is flagged for the same reasons. It modifies memory and calls native functions in it's module when it shouldn't be. Hopefully this answers your question.

nickk#0104 (GitHub, Roblox Repository)

Exploits: Synapse, Script-Ware, Nihon.

SirWeeb

ty Immune 4 prem

patron

Posts: 543

Threads: 23

Joined: Jul, 2021

Reputation: 29

  • 0

Replied

drag and drop it into DnSpy, then ask this question again.

Moon

Moon

moderator

Posts: 7189

Threads: 279

Joined: Aug, 2020

Reputation: 65

  • 0

Replied

Learn more about False Positives, it will explain anything

 

If you VT Synapse X, it will have more detections

  • 0

Added

Learn more about False Positives, it will explain anything

 

If you VT Synapse X, it will have more detections

MINISHXP

[REDACTED]

Posts: 1034

Threads: 0

Joined: Jan, 2021

Reputation: 7

  • 0

Replied

did you try decompiling the api it should be in c#

idiot

ogredale

Rogue

Posts: 519

Threads: 29

Joined: Jan, 2018

Reputation: 5

  • 0

Replied

@ThatPhoenix yeah what they said

Eat my blood Cicadas. | he/him | stupid gay furry | ogredale#4684 | My epic site

โ™ฅ๐Ÿ’™๐Ÿ’š๐Ÿ’›๐Ÿ’œ๐Ÿงก๐ŸคŽ๐Ÿ’•

xamel

Scripter

Posts: 129

Threads: 19

Joined: Sep, 2020

Reputation: 3

  • 0

Replied

@SirWeeb deeznuts spy

local info = {

[1] = "frel0#4458", [2] = "Scripter"

}

SirWeeb

ty Immune 4 prem

patron

Posts: 543

Threads: 23

Joined: Jul, 2021

Reputation: 29

  • 0

Replied

@xamel irrelevant reply

TERIHAX

Tires#3415

Posts: 1554

Threads: 55

Joined: Jul, 2020

Reputation: 10

  • 0

Replied

this guy thinks he's smart: "why does it come back as a 40 eh?" why the "eh?" you're not smart, do you even know what false positives are?

 

the wearedevs API is open source (if you don't know what open source means pls search it up)

 

and no i don't think I'm smart

Dsc: https://discord.com/users/883050084537860117

"teri teri peri peri sauce" - deadlocust (reply me with a quote & i might put it here)

Rep Goal 10 - Thanks for The Rep :O

Posts: 0

Threads: 0

Joined: ?

Reputation:

  • 0

Replied

Because 41 antivirus said it was an injector, which it is.


Next >>>

Users viewing this thread:


( Members: 0, Guests: 1, Total: 1 )