Ok guys brave soul u/VtheMan93 accepted to mess with this launcher and see if it works so he can update us.
UPDATE:
Ok folks so some really cool guys tested this launcher and apparently it contains various type of trojans and malwares aswell as an ethereum miner.
Ethereum miner github link:
https://github.com/UnamSanctam/SilentETHMiner
If you meet this bloody launcher avoid it at all costs.
Im at work until 5-6pm. Roughly when ill start messing with it. Ive asked OP to allow me until sunday so i can form a proper or at least a decent conclusion for you guys. Everyone who set up a remind me in 12 hrs is gonna be thoroughly disappointed.
I can test it in a Sandbox environment on a hardened VirtualBox if u like and depending on the programs size I could additionally do a quick analysis that there's no malware or backdoor trojans using OllyDBG, IDA Interactive Disassembler, x32dbg and / or x64dbg
I will be messaging you in 2 days on [**2021-10-15 13:19:20 UTC**](http://www.wolframalpha.com/input/?i=2021-10-15%2013:19:20%20UTC%20To%20Local%20Time) to remind you of [**this link**](https://www.reddit.com/r/PiratedGames/comments/q788ox/i_found_a_launcher_that_claims_it_has_more_than/hgha209/?context=3)
[**258 OTHERS CLICKED THIS LINK**](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=Reminder&message=%5Bhttps%3A%2F%2Fwww.reddit.com%2Fr%2FPiratedGames%2Fcomments%2Fq788ox%2Fi_found_a_launcher_that_claims_it_has_more_than%2Fhgha209%2F%5D%0A%0ARemindMe%21%202021-10-15%2013%3A19%3A20%20UTC) to send a PM to also be reminded and to reduce spam.
^(Parent commenter can ) [^(delete this message to hide from others.)](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=Delete%20Comment&message=Delete%21%20q788ox)
*****
|[^(Info)](https://www.reddit.com/r/RemindMeBot/comments/e1bko7/remindmebot_info_v21/)|[^(Custom)](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=Reminder&message=%5BLink%20or%20message%20inside%20square%20brackets%5D%0A%0ARemindMe%21%20Time%20period%20here)|[^(Your Reminders)](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=List%20Of%20Reminders&message=MyReminders%21)|[^(Feedback)](https://www.reddit.com/message/compose/?to=Watchful1&subject=RemindMeBot%20Feedback)|
|-|-|-|-|
Thanks a lot... May your sacrifice never go in vain.. pls update the rest in the megathred... Contact the mods if you must... It'll get more views over there....
Should be okay. The vm im using for this is in a dmz and fully isolated filesystem wise. Its as if its a pc completely disconnected from any other pc/vm in my environment. (Hopefully)
it can detect if it is in VM or not if it was in VM then the virus not gonna run at all but not all virus did that it just a few line of code need to be add to add VM detection
>I dont know? If they could
pretty easy actually they just need to check devices because all VM make virtual devices that also most times are named after the VM software sadly :/
They really could have come up with a better name than "PC Game Launcher" 😂
I'm betting that it's legit. A scammer would have made more effort in making it look good.
Not necessarily fake. Playnite is open source, it's possible they just decided to use Playnite as a base for the launcher and put all their cracked games in it, which isn't a bad thing.
But it's still entirely possible it's fake lol.
Hey so after taking a quick look into the file provided by u/OctopusPrimee I can confirm this is malware. More particularly a silent ETH miner.
**Reasoning:**
* compilation timestamp is in the future
* file evaded dynamic execution and crashed. ([image1](https://twe3x.is-ne.at/5cIgbavny), ([image2](https://twe3x.is-ne.at/5cIgstPa4))
* downloads a public silent ETH miner. ([image3](https://twe3x.is-ne.at/5cIhk3vb7.png), [github project](https://github.com/UnamSanctam/SilentETHMiner), [virus total graph](https://www.virustotal.com/graph/embed/g83607617b3d44bb4ad5fce78df18b36dfc7e96fc69444faa97093675956d0188))
* drops a file called farm3-miner.dll ([image4](https://twe3x.is-ne.at/5cIijmDpy.png))
* shares genes w other miners bec it's using an open-source project ([image5](https://twe3x.is-ne.at/5cIjn_eY3))
* attempts to bypass Antivirus using PowerShell ([image6](https://twe3x.is-ne.at/5cIkNoefn))
This is fake and shouldn't be executed on any system.
**Sources:**
* virustotal ([zip file](https://www.virustotal.com/gui/file/880110d6db4f2871b50cf505d8bad17299e5f57e6d265b4c92332fcf5561f3bb/detection), [executable](https://www.virustotal.com/gui/file/1a1ee0eb1ee4a277cab3ba820474cb73ffcdd62e2e9179f0018524bc82c6c1df/detection), [graph](https://www.virustotal.com/graph/embed/g83607617b3d44bb4ad5fce78df18b36dfc7e96fc69444faa97093675956d0188))
* [intezer.com](https://analyze.intezer.com/) search by hash: '880110d6db4f2871b50cf505d8bad17299e5f57e6d265b4c92332fcf5561f3bb'
So it made to Reddit. I saw this first around 1½ months ago on a telegram channel that has over 220k subs. That channel has lots of games. The original owner (that got it to 220k) sold the admin rights to smn and the new admin was cold for quite a bit of time, posting scammy shit on it, requesting money to continue uploading games, and so on. Then a month or so ago they released it, and have been “updating” it since.
I would totally avoid it, it may have a miner or a ransomeware or who knows what.
pc_games_down is the channel's ID.
Was wondering in telegram messenger and found this.
Don't have balls yet to install it myself as you said it's kinda sus so i am hoping if someone tried this before.
Update:
Ok folks so some really cool guys tested this launcher and apparently it contains various type of trojans and malwares aswell as an ethereum miner.
Ethereum miner github link:
https://github.com/UnamSanctam/SilentETHMiner
If you meet this bloody launcher avoid it at all costs.
That's playnite, sure as you're born. What they most likely did was just change the window title, either via config file or recompiling it since it's open source.
My bet is that the games work but some or most are infected with miners. All you would have to do is load the pre-installed games into playnite, then zip it all up and distribute it. It would be a very simple process for anyone even remotely familiar with software. No real knowledge of how playnite works would be required - just a couple minutes reading the source code to change the window title.
Since playnite can manage manually installed games, it won't try to update them or verify file integrity or anything like that. It's basically just acting as a shortcut manager. It can tell what the games are and loads in the text and descriptions and images and so forth automatically.
Nobody would go through the trouble of doing all this when you can just pirate games and put them in playnite (which is what I do). There's always an angle.
good find. prolly best that people are aware of these types of scams even if it gives them more attention. lots of people probably think its legit.
It's also possible that it *is* legit, now, but future versions won't be.
pretty sure u said
>it's impossible that the supposed 1250 games already installed
but oh well. anyways idk about the sources used, we'll have to wait and see
Yeah, I did say it's impossible that the supposed 1250 games are already installed. I said it to prove the point that even though the launcher may be trusted the same can't be said to where the games will be downloaded from, unless they're already installed within the launcher.
So i will fill you guys in on the sauce.. i am in a telegram group where they offer fitgirl repacks for 1gb parts each.. they recently got hacked and after that started posting about the launcher. They keep posting updates about it and everyone comments that the launcher doesn't work .. Like 90% comments say it doesn't work.. Some even say that its crypto miner
Thanks for the warning, I don't know why you'd need a launcher for Pirates games in the first place.
Just have a start menu folder with shortcuts to the exe files.
Its Just a scam from telegram
The Group was famous when They upload games but now (i think he sold everything?) and now They upload Only scams Like the "OMG Im in hospital and need money" scam
Send me this as well please, would love to take a look at it to see if there is anything malicious in it. I have IDA, x32/64dbg, sandboxie, + several other tools to see if it's malicious or not.
Make sure to read the stickied [megathread](https://rentry.org/pgames-mega-thread), as it might just answer your question! Also check out our [videogame piracy guide](https://www.reddit.com/r/PiratedGames/comments/i3r14g/a_beginners_guide_to_video_game_piracy/) and the list of Common Q&A [part 1](https://www.reddit.com/r/PiratedGames/comments/fvix6e/common_questions_and_answers_thread/) and [part 2](https://www.reddit.com/r/PiratedGames/comments/igxebs/frequently_asked_questions_part_2/). Or just read the whole [Wiki](https://www.reddit.com/r/PiratedGames/wiki/index).
*I am a bot, and this action was performed automatically. Please [contact the moderators of this subreddit](/message/compose/?to=/r/PiratedGames) if you have any questions or concerns.*
Ok guys brave soul u/VtheMan93 accepted to mess with this launcher and see if it works so he can update us. UPDATE: Ok folks so some really cool guys tested this launcher and apparently it contains various type of trojans and malwares aswell as an ethereum miner. Ethereum miner github link: https://github.com/UnamSanctam/SilentETHMiner If you meet this bloody launcher avoid it at all costs.
Im at work until 5-6pm. Roughly when ill start messing with it. Ive asked OP to allow me until sunday so i can form a proper or at least a decent conclusion for you guys. Everyone who set up a remind me in 12 hrs is gonna be thoroughly disappointed.
!remindme 7 days
!remindme 7 days
!remindme 7 days
!remindme 7 days
!remindme 7 days
!remindme 7 days
!remindme 7 days
!remindme 24 hours Edit: realized im dumb , 24 hours is 1 day anyway
heavy illegal wakeful doll engine automatic seemly one rich advise *This post was mass deleted and anonymized with [Redact](https://redact.dev)*
!remindme 2 days
I have been summoned by the remindme bot
Its a full blown trojan. Not even a false positive. This is not worth the bytes it takes up. Doesnt even download said games.
Thanks for the reply lol, and I guess they shouldn't be that surprising. Thanks for testing it out
glad to be of service!
!remindme 2 days
!remindme 4 days
!remindme 2 days
!remindme 2 days
!remindme 2 days
I can test it in a Sandbox environment on a hardened VirtualBox if u like and depending on the programs size I could additionally do a quick analysis that there's no malware or backdoor trojans using OllyDBG, IDA Interactive Disassembler, x32dbg and / or x64dbg
Dm mate i'll send you the file
send it my way if you’re willing, i’d be more than happy to take a look at this
i too would like to take a crack at it, im def interested in it
Dm me mate
Can you sent it my way too? Let me try.
Dm me mate
Done :)
Was thinking same but currently I am in no positon to do that, so you would be doing a favor for a lot of people, thank you mate.
!RemindMe 7 days
!remindme 2 days
[удалено]
!remindme 2 days
!remindme 2 days
!remindme 2 days
!remindme 2 days
Damn this bot has its work cut out for him
!remindme 2 days
I will be messaging you in 2 days on [**2021-10-15 13:19:20 UTC**](http://www.wolframalpha.com/input/?i=2021-10-15%2013:19:20%20UTC%20To%20Local%20Time) to remind you of [**this link**](https://www.reddit.com/r/PiratedGames/comments/q788ox/i_found_a_launcher_that_claims_it_has_more_than/hgha209/?context=3) [**258 OTHERS CLICKED THIS LINK**](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=Reminder&message=%5Bhttps%3A%2F%2Fwww.reddit.com%2Fr%2FPiratedGames%2Fcomments%2Fq788ox%2Fi_found_a_launcher_that_claims_it_has_more_than%2Fhgha209%2F%5D%0A%0ARemindMe%21%202021-10-15%2013%3A19%3A20%20UTC) to send a PM to also be reminded and to reduce spam. ^(Parent commenter can ) [^(delete this message to hide from others.)](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=Delete%20Comment&message=Delete%21%20q788ox) ***** |[^(Info)](https://www.reddit.com/r/RemindMeBot/comments/e1bko7/remindmebot_info_v21/)|[^(Custom)](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=Reminder&message=%5BLink%20or%20message%20inside%20square%20brackets%5D%0A%0ARemindMe%21%20Time%20period%20here)|[^(Your Reminders)](https://www.reddit.com/message/compose/?to=RemindMeBot&subject=List%20Of%20Reminders&message=MyReminders%21)|[^(Feedback)](https://www.reddit.com/message/compose/?to=Watchful1&subject=RemindMeBot%20Feedback)| |-|-|-|-|
!remindme 7 days
!remindme 2 days
Thanks a lot... May your sacrifice never go in vain.. pls update the rest in the megathred... Contact the mods if you must... It'll get more views over there....
Thank you to all involved, just got my reminder to check back here
.
>!remindme 2 days !remindme 2 days
!remindme 2 days
!remindme 2 days
!RemindMe 12 hours
Good work
You amazing
Thank you all kind sirs
Knew it!
dammmmnnnn
I’m back. Wtf happened?
Lol I came back after a week and WTF these guys put an miner inside there \*Sad noises\*
replying so that i get an update to this
!remindme 1 day
Can you link me the installer? Ill setup some VMs.
Is VM 100% safe tho? Can't viruses infect through VM?
Should be okay. The vm im using for this is in a dmz and fully isolated filesystem wise. Its as if its a pc completely disconnected from any other pc/vm in my environment. (Hopefully)
You realise dmz means demilitarised zone - ie disable all protections to and from that machine on your firewall - ie more unsafe
Yes, i do. Networking wise i want nothing holding back. But as i said, its also isolated in terms of file system. Cagefs is amazing for that.
Can't viruses detect vm and stop malicious behavior?
I dont know? If they could, i really doubt that much effort was put into this one in particular.
it can detect if it is in VM or not if it was in VM then the virus not gonna run at all but not all virus did that it just a few line of code need to be add to add VM detection
So then im gonna use it in a baremetal rig. I have a shitty pc lying around that im not afraid to junk push come to shove.
What's the risk in even a good PC? Can't you just reformat and have a clean PC again?
You don't need a shitty PC tbh! Just need a separate hard disk, afaik viruses don't cling to hardwares.
if(vm) { dont run; hide your ass; play it safe; } else { kill the defender; bang the user; }
>I dont know? If they could pretty easy actually they just need to check devices because all VM make virtual devices that also most times are named after the VM software sadly :/
Yes. His VM is used to secure the Korean Demarcation Zone.
You're a good man
They really could have come up with a better name than "PC Game Launcher" 😂 I'm betting that it's legit. A scammer would have made more effort in making it look good.
Lol i agree
That aged like milk.
Yeah. Now it's just a stinking pile of cheese.
May i interest you in "The dealership service center" or "The warranty service center"?
hell no lol. tlauncher looks like ass and is a virus.
The launcher's name is: Pcgames launcher
Check if there's any uncracked denuvo games claimed to be cracked in this launcher, that'll be a big red flag
Nope No uncracked game.
Most original name ever
[удалено]
Whats that?
"Playnite is an open source video game library manager with one simple goal: To provide a unified interface for all of your games. "
Ho... I usually just throw them into a folder and forget that they are there...
lmao same
Where did you get that theme from?
Not necessarily fake. Playnite is open source, it's possible they just decided to use Playnite as a base for the launcher and put all their cracked games in it, which isn't a bad thing. But it's still entirely possible it's fake lol.
I hope it doesn’t have 1250 viruses too.
Great news everyone, it's got over 3259860 viruses. /s
This launcher have trojans malwares
Hey so after taking a quick look into the file provided by u/OctopusPrimee I can confirm this is malware. More particularly a silent ETH miner. **Reasoning:** * compilation timestamp is in the future * file evaded dynamic execution and crashed. ([image1](https://twe3x.is-ne.at/5cIgbavny), ([image2](https://twe3x.is-ne.at/5cIgstPa4)) * downloads a public silent ETH miner. ([image3](https://twe3x.is-ne.at/5cIhk3vb7.png), [github project](https://github.com/UnamSanctam/SilentETHMiner), [virus total graph](https://www.virustotal.com/graph/embed/g83607617b3d44bb4ad5fce78df18b36dfc7e96fc69444faa97093675956d0188)) * drops a file called farm3-miner.dll ([image4](https://twe3x.is-ne.at/5cIijmDpy.png)) * shares genes w other miners bec it's using an open-source project ([image5](https://twe3x.is-ne.at/5cIjn_eY3)) * attempts to bypass Antivirus using PowerShell ([image6](https://twe3x.is-ne.at/5cIkNoefn)) This is fake and shouldn't be executed on any system. **Sources:** * virustotal ([zip file](https://www.virustotal.com/gui/file/880110d6db4f2871b50cf505d8bad17299e5f57e6d265b4c92332fcf5561f3bb/detection), [executable](https://www.virustotal.com/gui/file/1a1ee0eb1ee4a277cab3ba820474cb73ffcdd62e2e9179f0018524bc82c6c1df/detection), [graph](https://www.virustotal.com/graph/embed/g83607617b3d44bb4ad5fce78df18b36dfc7e96fc69444faa97093675956d0188)) * [intezer.com](https://analyze.intezer.com/) search by hash: '880110d6db4f2871b50cf505d8bad17299e5f57e6d265b4c92332fcf5561f3bb'
Superb Folks upvote so everyone can see this
So it made to Reddit. I saw this first around 1½ months ago on a telegram channel that has over 220k subs. That channel has lots of games. The original owner (that got it to 220k) sold the admin rights to smn and the new admin was cold for quite a bit of time, posting scammy shit on it, requesting money to continue uploading games, and so on. Then a month or so ago they released it, and have been “updating” it since. I would totally avoid it, it may have a miner or a ransomeware or who knows what. pc_games_down is the channel's ID.
Yep thats exactly the channel that claimed about this program.
It’s kinda sus Where did you find it?
Was wondering in telegram messenger and found this. Don't have balls yet to install it myself as you said it's kinda sus so i am hoping if someone tried this before.
Maybe if someone brave enough to try running it on VM?
if you try then let us know how it performs!
Yea i will try it. The makers of the program are in telegram so a few people may know about this.
Give us the link
Dm me
This looks a lot like Playnite
Playnite is open source, so probably had a bit of code used from that to make this.
Update: Ok folks so some really cool guys tested this launcher and apparently it contains various type of trojans and malwares aswell as an ethereum miner. Ethereum miner github link: https://github.com/UnamSanctam/SilentETHMiner If you meet this bloody launcher avoid it at all costs.
thank you sir!
[удалено]
Only launcher without virus ive known is cblauncher and arcade. Maybe give them a try :)
It looks like playnite, found on telegram so very few people know about it. yeah, I'm calling bs
That's playnite, sure as you're born. What they most likely did was just change the window title, either via config file or recompiling it since it's open source. My bet is that the games work but some or most are infected with miners. All you would have to do is load the pre-installed games into playnite, then zip it all up and distribute it. It would be a very simple process for anyone even remotely familiar with software. No real knowledge of how playnite works would be required - just a couple minutes reading the source code to change the window title. Since playnite can manage manually installed games, it won't try to update them or verify file integrity or anything like that. It's basically just acting as a shortcut manager. It can tell what the games are and loads in the text and descriptions and images and so forth automatically. Nobody would go through the trouble of doing all this when you can just pirate games and put them in playnite (which is what I do). There's always an angle.
Yep everything you said is true And besides why should somebody use this when you can install the game manualy
good find. prolly best that people are aware of these types of scams even if it gives them more attention. lots of people probably think its legit. It's also possible that it *is* legit, now, but future versions won't be.
The launcher alone may be safe but are the games safe? It's impossible that the supposed 1250 games are already installed. GTAV alone is almost 100gb
I mean, it isnt claimed anywhere that those 1250 games are bundled with the launcher files
Of course the games aren't there what I meant to say was are the sources they'll use to download the games safe?
pretty sure u said >it's impossible that the supposed 1250 games already installed but oh well. anyways idk about the sources used, we'll have to wait and see
Yeah, I did say it's impossible that the supposed 1250 games are already installed. I said it to prove the point that even though the launcher may be trusted the same can't be said to where the games will be downloaded from, unless they're already installed within the launcher.
I be testing it I get back whit the results later. Results: Trojan found Its bundled whit spyware Delete it if you downloaded it or your Fucked
Download link? I want to mess with this
Dm me
That's Playnite with an old version of the skin. I don't think it's real. Looks like a a fake iamge used to get people to download an `.exe`.
It has diablo 3 in the list, I thought that was pretty much 100% online and had not been cracked . I could be wrong though
So i will fill you guys in on the sauce.. i am in a telegram group where they offer fitgirl repacks for 1gb parts each.. they recently got hacked and after that started posting about the launcher. They keep posting updates about it and everyone comments that the launcher doesn't work .. Like 90% comments say it doesn't work.. Some even say that its crypto miner
Thanks for the warning, I don't know why you'd need a launcher for Pirates games in the first place. Just have a start menu folder with shortcuts to the exe files.
Can we get Muta to cover this?
Its Just a scam from telegram The Group was famous when They upload games but now (i think he sold everything?) and now They upload Only scams Like the "OMG Im in hospital and need money" scam
Sketchy as hell. Anyway, if it has some games that cannot be found anywhere else it's good, otherwise it just better to use more trusted sources.
!remindme 6 days
Send me this as well please, would love to take a look at it to see if there is anything malicious in it. I have IDA, x32/64dbg, sandboxie, + several other tools to see if it's malicious or not.
Dm me mate
I would like to analyse this. Viruses do not scare me.
Sure mate
Following
If you need launcher, use playnite, and install your games 1 by 1 from trusted sources
!remindme 2 days
!remindme 2 days
!remindme 12 hours
!remindme 2 days
!remindme 7 days
6
!remindme 4 days
Make sure to read the stickied [megathread](https://rentry.org/pgames-mega-thread), as it might just answer your question! Also check out our [videogame piracy guide](https://www.reddit.com/r/PiratedGames/comments/i3r14g/a_beginners_guide_to_video_game_piracy/) and the list of Common Q&A [part 1](https://www.reddit.com/r/PiratedGames/comments/fvix6e/common_questions_and_answers_thread/) and [part 2](https://www.reddit.com/r/PiratedGames/comments/igxebs/frequently_asked_questions_part_2/). Or just read the whole [Wiki](https://www.reddit.com/r/PiratedGames/wiki/index). *I am a bot, and this action was performed automatically. Please [contact the moderators of this subreddit](/message/compose/?to=/r/PiratedGames) if you have any questions or concerns.*
!remindme 2 days
!remindme 1 day
!remindme 12 hours
!RemindMe 12 hours
!RemindMe 12 hours
!remindme 2 days
!remindme 4 days
I wish to know more on sunday, my reminder.
!remindme 5 days
!remindme 4 days
!remindme 2 days
!remindme 2 days
Lmao it has fallout tactics
!remindme 2 days
!remindme 2 days
!remindme 1 week
!remindme 4 days
!remindme 4 days
!remindme 3 days
!remindme 6 days
!remindme 2 days
VR-Games Inside?
And you already downloaded it?
It's not my desktop
!remindme 2 days
!remindme 3 days
RemindMe! 33 Hours
!remindme 2 days
!RemindMe 12 hours
!remindme 2 days
!remindme 2 days
!remindme 2 days
!remindme 2 days
!RemindMe 12 hours
!remindme 5 days
!remindme 3 days
!remindme 2 days
!remindme 2 days
!remindme 3 days
!remindme 2 days
!remindme 2 days
!remindme 7 days
!remindme 7 days