Skip to content
/ how_to_avoid_getting_ratted_in_minecraft Public

how to avoid getting ratted in minecraft modding community and avoid some other scams.

2 stars 0 forks Branches Tags Activity
Star

FogmaLOL/how_to_avoid_getting_ratted_in_minecraft

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
README.md
README.md
 
 

Repository files navigation

GitHub Repo on How to Avoid Getting Ratted in the Minecraft Community

How Do I Know If a Mod Is a RAT?

  1. Use a website like RatRater2 and drag in the mod you want to download. If it says it’s a RAT, don’t run it. If it says it’s obfuscated, it’s most likely a RAT unless it’s a paid mod (it can still be a RAT). Note that RAT checkers may not always detect the RAT.

  2. You can also use a tool like JavaDecompiler to look through the code. If you find methods like player.getSession().getSessionId or Method_310 when compiled, or if it tries to access files like C:\Users\*yourusername*\.lunarclient\settings\game/accounts.json or %appdata%/feather/accounts.json, it’s trying to steal your client token. If it tries to contact an API like https://ipapi.co/ or if it has a Discord webhook that looks like https://discord.com/api/webhooks/xxxxx/xxxx, or a remote server using public IP address that can looks like 74.125.xxx.xxx, it is likely malicious.

Discord Verify Scam

The Discord verify scam is common in Hypixel-Skyblock. It usually relies on a person inviting you to a Discord server advertised as a place for help, giveaways, etc. A Discord bot may ask you to verify your Minecraft account with your username and email. It will send a reset password or access request to your email, asking for an OTP (one-time password) or session ID, allowing them to log into your Minecraft account or even steal your entire Microsoft account.

Still Want to Do Malware Analysis?

Use a VPN or proxy with a VM like VMware. Refer to this video for guidance. Use an alternative account or software like TLauncher to prevent them from getting your Session-ID for Minecraft. It may seem safe to run it offline, but it may set itself to autostart, allowing them to start the RAT as soon as you boot your computer.

Pretend to Be a VM

Some advanced malware may have anti-debug features that check for programs like Process Hacker or ProcMon. It may also check for specific usernames, IP addresses, HWID, disk names, etc. Consider using software like "Dolus." Watch this video for more information.

Do Your Background Research and Trust Trusted Sites

If it is on websites or software like Modrinth or CurseForge, it’s most likely not a RAT because they check through the code to ensure it’s not malware and verify that the person you are trusting is not impersonating someone else.

Credits, V.1.0

  • Fogma: Creating the repo and writing all the content.
  • 3000IQPlay: Some of the content comes from him. GitHub

About

how to avoid getting ratted in minecraft modding community and avoid some other scams.

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published