How does a malware effect a program and get loaded by Windows? - Page 5

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View

Re: How does a malware effect a program and get loaded by Windows?

Hot-Text was thinking very hard :

[...]

Recursion does not equal virus. JS.Loop was not a virus either.



Re: How does a malware effect a program and get loaded by Windows?

Quoted text here. Click to load it

I not trying to put a
<script language="JavaScript" type="Text/JavaScript">
alert("Mmm virus")
</script>
here....

But showing how it can get pass by in a ASX file,
to your MP....


< http://msdn.microsoft.com/en-us/library/ms910265.aspx >

Like the song Go::

Good Boy, Good Boy,
With are you going to do,
With are you going to do,
When the Virus come for you..

For the Hacker Johnny's,
Is coming for you,

So,  Good Boy, Good Boy,
With are you going to do,
With are you going to do,
When the Virus come for youuuuuuuuuuuuuuuu..

  

Re: How does a malware effect a program and get loaded by Windows?


Quoted text here. Click to load it

MP3 virus? MP3 is a file format. it's not executable. It can be
hijacked...via vulnerable players and a specially crafted id3tag; but it's
still NOT viral. All 3 examples you provided are script based. It doesn't
matter which script flavor.

Quoted text here. Click to load it

Script!
Quoted text here. Click to load it

It isn't. It doesn't replicate.
 
Quoted text here. Click to load it

Antivirus or virus. Trojans and viruses are different. Viruses must
replicate, they must have a host.
 
Quoted text here. Click to load it

Idiot. There is NO such thing as a self replicating trojan. It's either a
trojan or it's something else.


--
Things look bad from over here. Too much confusion and no solution.
Everyone here knows your fear. Your out of touch and you try too much.
Yesterdays glory will help us today. You wanna retire? Get outta the way.
I ain't got much time. Young ones close behind. I can't wait in line.


Re: How does a malware effect a program and get loaded by Windows?


Quoted text here. Click to load it

<a Top desktop threats');return true" onmouseout="eighth2();" />
.Trojan:Win32/Sirefef.AC
.Trojan:JS/IframeRef
.Worm:Win32/Conficker.B
.Worm:Win32/Conficker.C
.Virus:Win32/Sality.AM
.Exploit:Win32/CplLnk.A
.Virus:Win32/Sality.AT
.Worm:Win32/Dorkbot!lnk
.Trojan:Win32/FakeSysdef
.Trojan:DOS/Alureon.E
</a>

Quoted text here. Click to load it

Trojans virus
old
Virus:Win32/trojan-gen

Quoted text here. Click to load it

There you go Name Calling agene..
something else like::

Trojan:Win64/Bledoor.A
Description: Trojan:Win64/Bledoor.A is a trojan
that changes your computer's settings
so it may run any DLL file, even potentially malicious ones.
It also connects to certain servers to receive commands from a remote attacker.
Published Date: Jul 15, 2012
Alert level: Severe
 

Re: How does a malware effect a program and get loaded by Windows?


Quoted text here. Click to load it

Thats an exploit, worms and trojans. Various things, dude. You're
grasping at straws to stay in the discussion here...
 
Quoted text here. Click to load it

No. No such thing as a trojan virus.

Quoted text here. Click to load it

Dude, you ARE an idiot. You're trying to educate a former Vxer (a known
one at that) about viruses. That's idiotic. I wrote them. I know what
they are and what they aren't.
 
Quoted text here. Click to load it

Which isn't a virus.


--
Things look bad from over here. Too much confusion and no solution.
Everyone here knows your fear. Your out of touch and you try too much.
Yesterdays glory will help us today. You wanna retire? Get outta the
way. I ain't got much time. Young ones close behind. I can't wait in
line.


Re: How does a malware effect a program and get loaded by Windows?

Quoted text here. Click to load it


Malware

The Win32 Trojan-Gen is "malware," or malicious software. It is surreptitiously
downloaded from either the Internet or a USB drive.
It is usually disguised as a codec update or as an email attachment. When
activated, the Win32 Trojan-Gen infects the computer.
Infection

Win32 Trojan-Gen creates .dll files and .exe files, designed to disable existing
security programs, install annoying pop-ups, and
steal confidential information about the computer and computer user.

Symptoms

Symptoms of a computer with the Win32 Trojan-Gen are: sluggish computer response
times, reduced browser functions, browser pop-ups
and redirects, altered computer settings, deletion of registry files.
Behavior

The Win32 Trojan-Gen spies on the computer user, monitoring web activity with
the purpose of flooding the user with a barrage of
advertisements. Moreover, the trojan disables security software such as the
firewall, anti-virus, and malware scanners; this opens
up the computer to additional attacks from other malicious threats.
Removal

Removal of trojan software is tricky. A full reformat of the computer hard drive
always remedies the infection; however, this
solution is extreme and may be inconvenient. Alternative removal methods include
scanning the hard drive for the Win32 Trojan-Gen
file with anti-virus software, and deleting the file from the computer.


Quoted text here. Click to load it

All ways remember you are a Former Vxer,
Not a up to date as a to Vxer ........


Quoted text here. Click to load it

No but
Trojan:Win64/Bledoor.A
can add a virus,
by connects you remotely..


Game over..


Re: How does a malware effect a program and get loaded by Windows?


Quoted text here. Click to load it

Again, I rightfully call you an idiot.
 
Quoted text here. Click to load it

It is NOT a virus. Do you understand? It doesn't matter what it does or
can do. If it doesn't replicate into another host, it's NOT a virus.

Quoted text here. Click to load it

For you.


--
Things look bad from over here. Too much confusion and no solution.
Everyone here knows your fear. Your out of touch and you try too much.
Yesterdays glory will help us today. You wanna retire? Get outta the way.
I ain't got much time. Young ones close behind. I can't wait in line.


Re: How does a malware effect a program and get loaded by Windows?


Quoted text here. Click to load it
to

To further elaborate,

You can't even help Ray with asic source snippits I took the time to
share. I didn't need you to tell me what assembler does or what you can
do with it. Unlike yourself, I code in it. ;p

Quoted text here. Click to load it

I wrote a bios reflashing routine, and a bios dumping routine so I could
remove lockjack from a laptop last year... LOL. That's all 386 asm code
and way above you based on what you've shown you don't understand here.

Btw, graphics options aren't all cpu based. YOu can talk to the gpu or
various other hardware components using assembler. I already know this
shit, I've been writing in assembler for years... Asic for even longer.

You couldn't figure asic out, you couldn't figure out what my little asm
program did, and it sounds like you're quoting snippits of wikipedia or
something on assembler here with your description of hardware
advancements. Boring, boring, and boring. Did I mention, boring? If not,
I find it to be, boring.
 
Quoted text here. Click to load it

It would be pointless of me to post more code. I've posted enough code
as it is. Ray nor yourself understand any of it. You're both asking dumb
! questions about it. And you both like to make claims, "I bet you can't
do this." It gets old dude and boring.

I've studied thousands of malware samples by disassembling them. You
can't do that if you're stuck in the 80s or 90s as you like to infer
from time to time. Many of them use undocumented windows API calls too.
Sometimes, it can get very interesting as you learn what they
discovered.

So enough with the bullshit dude. I can code. On modern systems and
older systems. It makes no difference to me.

There's more asm than 386 too. There's 64bit architecture, mmx, mmx2,
amd's own shit, etc. You can get processor specific to the point where
your app won't run on an AMD or intel, if you want to be that anal and
intentionally only support that hardware. In the 90s, some authors
actually did that shit. They'd expect AMD 3dnow support, and so wouldn't
run on an intel box.

Fact is, I've been doing this for a long long ass time. I've learned a
thing or two in the years. :)
 
Quoted text here. Click to load it

It's difficult for me to ignore posts of a technical nature if the
information is wrong and/or misleading. Don't do that when you respond
or create one, you won't hear from me.



--
Things look bad from over here. Too much confusion and no solution.
Everyone here knows your fear. Your out of touch and you try too much.
Yesterdays glory will help us today. You wanna retire? Get outta the
way. I ain't got much time. Young ones close behind. I can't wait in
line.


Re: How does a malware effect a program and get loaded by Windows?


Quoted text here. Click to load it

lockjack=lowjack. It's bios/windows aware.
 

--
Things look bad from over here. Too much confusion and no solution.
Everyone here knows your fear. Your out of touch and you try too much.
Yesterdays glory will help us today. You wanna retire? Get outta the way.
I ain't got much time. Young ones close behind. I can't wait in line.


Re: How does a malware effect a program and get loaded by Windows?


Quoted text here. Click to load it

Nice crosspost. I'm not full of shit tho, HT.

 


--
Things look bad from over here. Too much confusion and no solution.
Everyone here knows your fear. Your out of touch and you try too much.
Yesterdays glory will help us today. You wanna retire? Get outta the way.
I ain't got much time. Young ones close behind. I can't wait in line.


Re: How does a malware effect a program and get loaded by Windows?


Quoted text here. Click to load it

segment code

start:
mov ax,data
mov ds,ax
mov ax,stack
mov ss,ax
mov sp,stacktop

mov dx,hello
mov ah,9
int 0x21

mov ah,0x3c
mov cx,0
mov dx,files
int 0x21

mov [filehnd],ax

mov ah,0x40
mov bx, [filehnd]
mov cx,[msglength]
mov dx,hello
int 0x21

mov ah,0x3e
mov bx,filehnd
int 0x21

mov ax,0x4c00
int 0x21

segment data

hello: db 'Hi! Ray How did I get created Today?',13,10,'$'
files db 'ray.txt', 0
filehnd dw 1
msglength dw 38


segment stack stack
resb 64
stacktop:

Cool eh? [g]


--
Things look bad from over here. Too much confusion and no solution.
Everyone here knows your fear. Your out of touch and you try too much.
Yesterdays glory will help us today. You wanna retire? Get outta the
way. I ain't got much time. Young ones close behind. I can't wait in
line.


Re: How does a malware effect a program and get loaded by Windows?

Hot-Text explained on 7/27/2012 :
Quoted text here. Click to load it

So, what's the difference. Both interpreting and compiling get similar
results.



Re: How does a malware effect a program and get loaded by Windows?


Quoted text here. Click to load it

What's taking you so long to ask more questions or respond in some
wiseass cheeky fashion Ray? This isn't like you...
 
Quoted text here. Click to load it

It's infect. You can do it by prepending, appending, cavity infection,
companion infection... boot sector infection, and multipartite
infection. (boot sector and files).
 
Quoted text here. Click to load it

Not rocket science ray. Just a program. A virus is really just a program
with an additional feature; it intentionally self replicates.
 
Quoted text here. Click to load it

Get caught for what? :)

Has my assembler been satisfactory enough? Did I explain what each line
did well enough for you to understand Ray? :)


--
Things look bad from over here. Too much confusion and no solution.
Everyone here knows your fear. Your out of touch and you try too much.
Yesterdays glory will help us today. You wanna retire? Get outta the
way. I ain't got much time. Young ones close behind. I can't wait in
line.


Site Timeline