JOIN BREACHFORUMS TELEGRAM
Malware Extension Spoofer
by Psych1c - Tuesday January 13, 2026 at 12:16 AM
Married To Malware
God
Posts: 62
Threads: 7
Joined: Jan 2025
Reputation: 680

Lotery WinnerHackerWeb DeveloperCoder
#1
Jan 13, 2026, 12:16 AM (This post was last modified: Jan 15, 2026, 10:47 AM by Psych1c.)
PowerShell script that hides the app/malware file extension by padding the filename with spaces.
This method has been covered by John Hammond on his channel and this is simply a slightly improved remake of his code
Example picture: 
[Image: Screenshot-2026-01-12-162542.png]
‎ ‎ 
Example video:
https://sendvid.com/ml86udlc
‎ 
Use command:
.\extspooferps.ps1 -FilePath .\malware.exe -NewBasename "innocentfile.jpg" -NewExtension "exe"
‎ ‎ 
Script:
Hidden Content
You must register or login to view this content.
[Image: Banner-Glow-245161638.png]
@Psych1c  @m3nt4l
Reply
DOG User
God
Posts: 17
Threads: 4
Joined: Mar 2025
Reputation: 371

GOD
#2
Jan 13, 2026, 12:18 AM
This doesn't appear to pass even a cursory MIME check.
Reply
Married To Malware
God
Posts: 62
Threads: 7
Joined: Jan 2025
Reputation: 680

Lotery WinnerHackerWeb DeveloperCoder
#3
Jan 15, 2026, 10:28 AM
(Jan 13, 2026, 12:18 AM)kaz Wrote: This doesn't appear to pass even a cursory MIME check.

There's other methods for MIME checks, this method works for direct installs and physical/irl spreading.
[Image: Banner-Glow-245161638.png]
@Psych1c  @m3nt4l
Reply
Advanced User

Posts: 108
Threads: 11
Joined: Jun 2024
Reputation: 0
#4
Jan 15, 2026, 10:34 AM
example video is down already
Reply
Married To Malware
God
Posts: 62
Threads: 7
Joined: Jan 2025
Reputation: 680

Lotery WinnerHackerWeb DeveloperCoder
#5
Jan 15, 2026, 10:48 AM
(Jan 15, 2026, 10:34 AM)itskilim Wrote: example video is down already

video link updated
[Image: Banner-Glow-245161638.png]
@Psych1c  @m3nt4l
Reply
Banned

Posts: 115
Threads: 6
Joined: Apr 2026
Reputation: 0
#6
Jan 21, 2026, 06:31 PM
let me have a look thanks for sharing

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Contact Administration.
Reply
Banned

Posts: 27
Threads: 1
Joined: Apr 2026
Reputation: 0
#7
Jan 28, 2026, 02:50 PM
lets take a look brooo

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Contact Administration.
Reply
Breached
Member
Posts: 210
Threads: 1
Joined: Jan 2025
Reputation: 0
#8
Jan 28, 2026, 07:28 PM (This post was last modified: Jan 28, 2026, 07:35 PM by nobodycares.)
You don't use special caracters that invert the text after the dot character?
I'm curious to see that

EDIT:
Damn! That's smart thanks for that man!
Reply
Banned

Posts: 39
Threads: 0
Joined: Apr 2026
Reputation: 0
#9
Jan 29, 2026, 05:41 AM
You must reply to this thread to view this content.

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Contact Administration.
Reply
Banned

Posts: 24
Threads: 10
Joined: Apr 2026
Reputation: 0
#10
Jan 29, 2026, 06:15 PM
It looks really good

This forum account is currently banned. Ban Length: Permanent (N/A Remaining)
Ban Reason: Contact Administration.
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  [Sektor7] Full Recent Course Spearr 30 669 4 hours ago
Last Post: sud0net
  Sektor7 - Malware Development Advanced - Vol.1 Sh4d0w1X 424 42,713 4 hours ago
Last Post: sud0net
  Xordium stealer for Pulsar v2.4.5 nullvex 25 991 7 hours ago
Last Post: gergergergerg5825g651eg
  [ LIST ] 5 FREE STEALERS WITH PROS/CONS elix 384 14,808 7 hours ago
Last Post: gergergergerg5825g651eg
  [Go] Using the recycle bin for stealthy persistence (Beginner tutorial) CreateThread 16 920 Yesterday, 07:53 AM
Last Post: sureno

Forum Jump:


 Users browsing this forum: 1 Guest(s)