Hellevator: Try my game (Discord scam)

Scams
1

Scammer’s Website or Email: https://playhellevator.blogspot.com/2024/02/hellevator.html
Additional information about this scam: I got DMed from this stranger who ask me to test his game. I warned the server that we have in common. I also praised the scammer for his amazing game, and he blocked me.

scam28022024
scam280220241037×1080 40.9 KB

2

Triage Report:  hxxps://playhellevator[.]blogspot[.]com/2024/02/hellevator[.]html | Triage

Cannot run it using ANY.run because the exe is 64-bit

3

This malware is actually quite undetected, I am going to report it to various AV software to increase the detection, here is an in-depth analysis in Hybrid Analysis if you wanna see exactly what this malware does https://www.hybrid-analysis.com/sample/db3740eff8e251180c695bb58f1e44637596a5c38c05932bd333c38e163235a0/66075978ac8daee0ae0d8a9f

4

Any.Run: https://app.any.run/tasks/ad416c9f-8abd-470e-a6d6-1d758ff1cbd9

5

Looks like a standard Discord tokener.

6

Yeah Malwarebytes is aware of it and they are currently reverse engineering it and adding detections, I also reported it to Microsoft, but they always take forever to add detections for threats like these.

7

This scam sounds like a typical bait-and-switch tactic. They lure players with promises of a game, but in reality, it’s a phishing attempt to steal your Discord credentials or personal information. It’s always a good idea to be cautious when clicking on random links or downloading files from unverified sources. For those who are into competitive gaming, especially in games like Dota 2, it’s better to invest your time in trusted services, such as improving your rank with boosting services like this one https://eloboss.net/dota2-boosting Stick to platforms you know and trust to avoid falling for these scams.

8

I’ve seen this exact “try my game on Discord” approach pop up a few times now, and it always follows the same pattern of rushing people and moving the conversation off-platform. After getting burned once, I became a lot more careful about where I spend time or money online and started sticking only to platforms I’ve personally tested. For example, when I want something straightforward and predictable, I use https://pafbet-lv.com/ in between my usual browsing because it’s been consistent for me and hasn’t raised any red flags. That kind of contrast really highlights how sketchy these Discord invites feel when you compare them to services that don’t rely on pressure or fake hype. Scams like this thrive on urgency, while legitimate platforms tend to speak for themselves over time.

9

idk if its the same guy but one of my friends fell for one of these scams this is the info i have so far Scammer Information

Telegram: @Furryguys, @Kushnerefunds
Discord: aryanop0307
Location (true): India

Scam Method:

  • Hacks Discord accounts through compromised friends.

  • Sends a fake “game download” link which is actually a virus.

  • Once the victim installs it, the scammer gains access and continues harassment.

  • Uses fake threats of “DDOX” (not a real attack, confused with DDoS).

  • Intimidates victims with scare tactics to pressure them further.

Additional Tactic (well-documented):

  • The Discord handle aryanop0307 is directly associated with a widespread scam.

  • Victims report being contacted with fabricated claims such as:

    “I accidentally reported you and need a code from you to raise a support ticket.”

  • This tactic is a social engineering ploy meant to create panic and trick users into giving away account credentials.

  • Public reports confirm that this scammer has targeted multiple users with the same method. [1]

Payment Trail:

Threats:

Notes:

  • Classic mix of malware + social engineering.

  • Goal: stealing accounts, spreading malware, issuing threats, and extorting victims.

10

Если вы были обмануты, не стесняйтесь сообщать об этом в IC3 (Центр жалоб в интернет -преступлениях). Они могут помочь вам принять меры. Обязательно обратитесь к реальной компании напрямую, если вам нужна дополнительная помощь. Если вам нужно руководство по отчетам, не стесняйтесь сообщать мне.

11

If you’ve been scammed, don’t hesitate to report it to the IC3 (Internet Crime Complaint Center). They can assist you in taking action. Make sure to contact the real company directly if you need further help. If you need guidance on reporting, feel free to message me.

12

Ohh niceee