UPDATE: Thanks to me all the software torrents have been removed from https://funkytorrents.com/ since they all had a password stealing malware in them.

Hello everyone. Funkytorrents.com has been online since quite sometime now. The first post that I read about it is dated 2007. So a few years back I joined it for music.

Their uploading bot was quite good at genres & I used to frequently download my R&B music from there until one day the bot stopped posting. I don't know the story behind it although I wrote to the mods there but never got a proper reply.

Fast forward to 2024. A few days back I visited it again and saw that they have also started uploading softwares. Some of the uploaded software torrents were quite good so I downloaded a few. When I tried to install the latest Winrar I got a notification that it contains password stealing trojan. So I checked all the softwares downloaded from there and almost all the software has this password stealing trojan in them. See the the exact prompts I received after scanning their software torrents.

Forensics log

Date Component Action Details

11/17/2024 9:12:03 AM User Pc/J Infection quarantined Malware "Trojan.PasswordStealer.GenericKD.2158 (B)" in "7z2408-x64.exe".

11/17/2024 9:12:01 AM Scanner Detection Malware "Trojan.PasswordStealer.GenericKD.2158 (B)" in "7z2408-x64.exe" (SHA1: 9136524f54fb0fc70342e3efa34ec2fd570f5a58)

11/17/2024 9:10:30 AM User Pc/J Infection deleted Malware "Trojan.PasswordStealer.GenericKD.2158 (B)" in "driver_booster_setup.exe".

11/17/2024 9:10:26 AM User Pc/J Infection deleted Malware "Trojan.Generic.36880389 (B)" in "Driver.Booster.12.0.0.308.exe".

11/17/2024 9:10:08 AM User Pc/J Infection quarantined Malware "Trojan.Generic.36880389 (B)" in "Driver.Booster.12.0.0.308.exe".

11/17/2024 9:10:05 AM Scanner Detection Malware "Trojan.Generic.36880389 (B)" in "Driver.Booster.12.0.0.308.exe" (SHA1: f682ba0fcccf72db2deca278a3641aef033f4fc4)

11/17/2024 9:09:14 AM User Pc/J Infection quarantined Malware "Trojan.PasswordStealer.GenericKD.2158 (B)" in "driver_booster_setup.exe".

11/17/2024 9:09:11 AM Scanner Detection Malware "Trojan.PasswordStealer.GenericKD.2158 (B)" in "driver_booster_setup.exe" (SHA1: 4a3dfdd7730394f21effa5d42a44389605ee7588)

So here I am warning everyone and anyone who is planning to download/install softwares from funkytorrents.com specially the ones uploaded by the user PVP please be careful. A friend of mine also confirmed this. Better to be safe then sorry.

UPDATE: Guys I downloaded Winrar since they said they has a new version which was not available anywhere else. So I had doubts and I downloaded random softwares from there to check and my doubts were confirmed.

Thanks I know about 7-zip y;all. <3