.: AIM Fake 3.02 :.

Released 18 years, 4 months ago. Mar 2003

By r3L4x

Additional Details

  • Coded by: r3L4x
  • Version: AIM Fake 3.02
  • Released date: Mar 2003, 18 years, 4 months ago.
  • Coded in: Visual Basic
  • Family: AIM Fake
  • Category: Information Stealer

MegaSecurity Notes

size: 217.088 bytes

startup:
none

Author Words

Readme for Real McCoy AIM Password Stealer 
by r3L4x v3.01 - --/EMAIL REDACTED BY SUB7CREW.ORG FOR YOUR SAFETY\--
()()()()()()()()()()()()()()()()()()()
  *Written in vb6, NEED VB RUNTIMES*

The latest version of Real McCoy 
features an 'edit server' type program used in coding your ICQ number directly
into the aim.exe, what this means is once you set the ICQ number you can send
it to your friend/distribute it on kazaa (why anyone would do that I don�t know)
and it will still work, because your ICQ number isn�t set in the registry, it
is directly in the exe file. The edit server is located in the decrypter. 

Don�t worry, there is no 'server' as in a Trojan anywhere in this file. Although,
some antivirus companies watch astalavista and mark programs on there as viruses. 
Edit server is just a term used when describing how a program edits the code
of a compiled exe.

to be on the safe side I would pack AIM.exe after configuring the settings.
a good packer can be found at: --/URL REDACTED BY SUB7CREW.ORG FOR YOUR SAFETY\--   

Password Recovery
-----------------
3 diff ways
	-Through the registry, use 
	decrypter - Editer to see keys
	
	-Through ICQ Page, configure
	with decrypter - Editer

	-Through log, which is stored in
	%root%\WIN32DVR.EXE (a COMPLETELY 
	harmless file, open in notepad to 
	reveal log)
	
%root% = root folder, eg: C:\WINDOWS
it differs from OS to OS

here is a list of functions
---------------------------
	Edit server
	Advanced PW Recovery
	ICQ Notification
	Registry Editing w/ encryption
	file recovery
	System Tray Icon
	sys tray Menus - exactly like AIM
	Shell execution of real AIM
	mouse over affects
	convincing icons

Known Bugs
----------
The only one i can think of is a bug where
the log in screen looks totally strange and
nothing near what it should look like. I really
dont know how to fix this, all my testers have had
no problems at all. It was always tested in 
1024x768 res. and 32 bit color. 

r3L4x

URL's and mails were automatically redacted (filtered) for reader's safety. However the filter is not perfect and can't find all harmful elements. If you find something dangerous including file link, website, mail address, profanity... contact me immediately at sub7crew@protonmail.com, thank you in advance.