Made a fake CMD. Download it here: MEGA
Compatible with tree, dir /s and netstat. Let me know if you want anymore. To trick scammers into using it, delete the original CMD and rename it to cmd. Read the README file, it has all the details. I’ll just say, oone of them crashes your computer so don’t test it on your actual pc, but the nocrash one is fine to use. Updated link. The old one had a positive-false detection.
hmmm
@scambaiter633#9594 not working apparently it’s dangerous
It was a virus.
Dammn. He was trying to rat us
@bandbgamesroom#9687 it’s not
@FuelDaFlame#9688
@scraps210#9693 I wasn't try it on a VM
@scraps210#9693 in fact I’ll post the script
For everyone saying it’s ‘dangerous’ -it’s not, all it is is some batch script. I will post it so you know.
@scraps210#9693 it’s not a rat
So I’ve checked the files and googled the program, and they say it’s a false-positive. I’ll upload it to a different file host and try it there. Sorry for the inconvenience.
Script: Fakecmd.bat (.exe once converted)
@echo off
:Ask
set INPUT=
echo Microsoft Windows [Version 10.0.10586]
echo (c) 2015 Microsoft Corporation. All rights reserved.
echo.
set /P INPUT=“C:\Users\user\Desktop>”: %=%
If /I “%INPUT%”==“tree” goto tree
If /I “%INPUT%”==“dir /s” goto dir
If /I “%INPUT%”==“netstat” goto net
start
exit
:tree
color c
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
PING 127.0.0.1 -n 2 > nul
echo.
Echo get ready...
set loopcount=99999999
:loop
start rand.bat
set /a loopcount=loopcount-1
if %loopcount%==0 goto exitloop
goto loop
:exitloop
pause
exit
:dir
color c
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
PING 127.0.0.1 -n 2 > nul
echo.
Echo get ready...
set loopcount=9999999
:loop
start rand.bat
set /a loopcount=loopcount-1
if %loopcount%==0 goto exitloop
goto loop
:exitloop
pause
exit
:net
color c
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
echo SCAMMER FOUND
PING 127.0.0.1 -n 2 > nul
echo.
Echo get ready...
set loopcount=99999999
:loop
start rand.bat
set /a loopcount=loopcount-1
if %loopcount%==0 goto exitloop
goto loop
:exitloop
pause
exit
Script: rand.bat (stays .bat)
@echo off
:top
set /a rand1=%random% %% 16
set /a rand2=%random% %% 16
set HEX=0123456789ABCDEF
call set hexcolors=%%HEX:~%rand1%,1%%%%HEX:~%rand2%,1%%
color %hexcolors%
echo SCAMMER DETECTED
set /a rand1=%random% %% 16
set /a rand2=%random% %% 16
set HEX=0123456789ABCDEF
call set hexcolors=%%HEX:~%rand1%,1%%%%HEX:~%rand2%,1%%
color %hexcolors%
ping -n 0.25 500.0.0.1>nul
goto top
Next time upload a virus total. Also instead of “C:/Users/user” use C:/Users/%username%. %username% is an environment variable for the current user’s name.
@FuelDaFlame#9728 Ok cool thanks.