What Happened Here? - Page 2

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View

Re: What Happened Here?

On Wednesday, December 5, 2012 4:40:50 AM UTC+2, Dustin wrote:
 
Quoted text here. Click to load it

What?  You wrote viruses at the same time you were volunteering work for
MalwareBytes?  That's enough to sic Anonymous on you.

So, do you know what OOP is?  Gang of Four means what to you Dustin?  Educate us
please... lol.

RL

Re: What Happened Here?


Quoted text here. Click to load it

Malwarebytes didn't exist in 2000, Ray. Irok was from 2000, as you well
know. So it would be very difficult to be doing both at the same time,
being as the other didn't even exist until several years (nearly 8
infact) after iroks creation and my retirement from VX.

Btw, I didn't do volunteer work at malwarebytes; I was a paid employee.
Malware Research. I still maintain the status of expert on the forums.
 
Quoted text here. Click to load it

I do, Ray. But, you already owe me atleast 10 questions as it is. You
still need to tell us how Irok, a prepender, infects files.

When you answer that one, you can answer the others about assembler
you've chosen to ignore.
I've already answered way more questions for you, AND provided source
code in two different languages because you asked me to prove I could--
I even went a step further and wrote you two assembler programs from
scratch that did more than you even challenged me to write. I passed
easily. Now it's way beyond your turn.  I'll do nothing else until you
prove you're atleast somewhat of a equal. So enough with the general
coding 101 script kiddy questions.

How does irok work, Explain how each line in that assembler program I
wrote for you! works. I know, you said I copied it, well, where's the
original then? You said I copied irok, so wheres the original source
code? Why can't you find it?

I've asked these questions again and again, You need to answer them.
Educate us? My ass. I 0wn you.



--
Notice: Changing the toilet paper roll does not cause brain damage.

Re: What Happened Here?


Quoted text here. Click to load it

Dustin why did you leave Malwarebytes?

Jax
--
Bear Bottoms
http://bearware.info

Re: What Happened Here?


Quoted text here. Click to load it

:) Did BD ask you to ask me, or did you think of it on your own? Who is
the puppet and who is the master?


--
Notice: Changing the toilet paper roll does not cause brain damage.

Re: What Happened Here?

RayLopez99 expressed precisely :
Quoted text here. Click to load it

An older than dirt concept that is brand new to you?



Re: What Happened Here?


Quoted text here. Click to load it

He gave up his assembler book to concentrate on that I suppose. If I
answer his questions, he'll likely try and solicit help for something
he's working on but can't figure out on his own.

Say, irok, a prepender.. he can't tell me it's infection method. Have
you noticed him completely avoid the question? The source code snippits
I shared should have been enough to get any competent coder/programmer
up and running. That was months ago.

He did claim I stole the code, but never was able to provide the
original source nor post the sections I wouldn't provide him. Had he
been truthful in his claim that I stole it, that shouldn't have been a
problem. I found it especially amusing that some professional programmer
as he professes to be kept asking for code he didn't even really need,
had he actually understood what was going on in the code I did provide
him.

He's not much of a programmer and we both know he's far from a coder of
any sort.

He requested a demonstration in assembler; and I more than exceeded
hissimplistic challenge. Did I get credit, props, or him uphold his end
should I provide source? Of course not. He hasn't got a damn clue.

OOP is probably something he needs help with, so in reverse psy fashion
he intends to seek it. [g]


--
Notice: Changing the toilet paper roll does not cause brain damage.

Re: What Happened Here?

Dustin submitted this idea :
Quoted text here. Click to load it

Probably true. I just thought it funny that he picked OOP as if it was
a new concept. If he really was a programmer, as he claims, he would
have picked something *new* to imply that you aren't 'up-to-date' with
modern programming concepts. Yes, he's just trying to imply that you
are a 'has been' and instead he displays that he is a 'never was'.
Quoted text here. Click to load it

I wonder if he knows the color of George Waswhington's white horse.

Quoted text here. Click to load it

Yes.


I had to laugh at his interpretation of 'int' back then, what a Bozo.
Quoted text here. Click to load it

Of course we both knew that already.
Quoted text here. Click to load it

Next he'll ask you to help him with Google.



Re: What Happened Here?


Quoted text here. Click to load it

You don't suppose Ray here is one of those fine upstanding people the
anonymous person accused me of character assassination do you? :)



--
Notice: Changing the toilet paper roll does not cause brain damage.

Re: What Happened Here?

Dustin wrote on 12/7/2012 :
Quoted text here. Click to load it

No, I don't. It is quite obvious that Ray is his own worst enemy in
that respect. He reminds me of the old saying about it being better to
remain silent and thought a fool than to speak up and remove all doubt.



Re: What Happened Here?


Quoted text here. Click to load it


Btw,

I developed a custom "kit" when I was 15 or so years old. I called it
LAB. It would modify executables you selected with my custom X14 trojan.
which was later converted to a full fledged virus.

That's beaten your exercise by 19 years. [g] LAB v1.5 was the last
edition of the software, distributed in the early 90s via BBS systems,
including the world famous, Chiba City Blues; an internationally
recognized center for virus sources, virus author contacts, etc.


Quoted text here. Click to load it

It did infact generate new samples everytime, by using your target
"exe" file to generate a random sequence of bytes as an encryption key;
It would use this to determine were subroutines in the source file
should go. The file IO routines could be swapped around, printer control
(It printed a potleaf on HP capable printers. Later converted to support
laserjets via PCL)

Just ahead of your "clever mind" again, by 19 years, if going by the
last release. 23 years if going by first release.

And thats if were sticking to PC systems, not mainframes or Apple
systems.

Quoted text here. Click to load it

A hash signature change won't fool many scanners. You'll still have alot
of static code that can be locked onto.

I'll lurk and see if anyone comes forward to help you. [g]


--
Notice: Changing the toilet paper roll does not cause brain damage.

Re: What Happened Here?

On Sun, 2 Dec 2012 07:38:04 -0800 (PST), RayLopez99

Quoted text here. Click to load it
 I could spice things up and start posting again, but my fertile mind is engaged
with other bullshit at the moment.  One pet project of mine:  use the GOF
strategy pattern known as MEF to allow a noob (like Dus t bin) to 'drag and
drop' parts of a virus / malware (from a family tree or menu of such badware) to
build a 'designer virus'.  Using .NET it would compile an executable that would
in theory be a zero day vector.  I am however researching the legal issues and
there's lots of ambiguity out there.  For instance, besides a consent form for
no liability, I would have to cripple the executable so that it does nothing
except evade detection by the antivirus programs--nothing more than that, as
this is an academic exercise.  Also I would imagine if I can think of doing this
it must have already been done by more clever minds than mine--there must be a
'design your own badware' kit out there, that in
Quoted text here. Click to load it

Why is the first line in your post 992 characters in length?

I suggest you work on that problem before the more obtuse one
described.

Site Timeline