CIA

No explicit questions like "how do I hack xxx.com" please!
Post Reply
User avatar
Mr_Vain
forum buddy
forum buddy
Posts: 14
Joined: 15 Mar 2006, 17:00
18

CIA

Post by Mr_Vain »

Does nyone know what`s going on with the CIA RAT ?I would like to have a new undetectable version since its the strongest trojan there is.

devilhunter
Newbie
Newbie
Posts: 3
Joined: 12 Jun 2006, 16:00
17

Post by devilhunter »

cant say its the best there was(and still is) another trojan which was created in '99 it was called trapdoor it gave u acces to anything on the users PC and deactivated antivirus software the bug was it slowed down ur pc

User avatar
CommonStray
Forum Assassin
Forum Assassin
Posts: 1215
Joined: 20 Aug 2005, 16:00
18

Post by CommonStray »

take the CIA RAT source and modify its signatures, that way antivirii progs wont pick it up

User avatar
CommonStray
Forum Assassin
Forum Assassin
Posts: 1215
Joined: 20 Aug 2005, 16:00
18

Post by CommonStray »

devilhunter wrote:cant say its the best there was(and still is) another trojan which was created in '99 it was called trapdoor it gave u acces to anything on the users PC and deactivated antivirus software the bug was it slowed down ur pc
almost all trojans give you full access to a system if its used correctly, filesystem, processes etc...some such as sub7 even allow you to do the matrix effect as seen in the movie, as well as screencaptures, print, cdrom open/close etc...

User avatar
Mr_Vain
forum buddy
forum buddy
Posts: 14
Joined: 15 Mar 2006, 17:00
18

Post by Mr_Vain »

CircuitB0mB wrote:take the CIA RAT source and modify its signatures, that way antivirii progs wont pick it up
GREAT !!! erm...where can i find the src?

User avatar
Nerdz
The Architect
The Architect
Posts: 1127
Joined: 15 Jun 2005, 16:00
18
Location: #db_error in: select usr.location from sucko_member where usr.id=63;
Contact:

Post by Nerdz »

Can you simply use an unasm and change stuff like comments?
Give a man a fish, you feed him for one day.
Learn a man to fish, you feed him for life.

User avatar
DNR
Digital Mercenary
Digital Mercenary
Posts: 6114
Joined: 24 Feb 2006, 17:00
18
Location: Michigan USA
Contact:

virii signatures

Post by DNR »

A quick surf on virus signatures only said that antiviri progs (which each use their own propriety way) scan for the signature of bytes that are in a certain order - adding bits to comments or padding the software may not hide the collection of bytes that it is looking for. Rewriting that tell-tale section could work - but then you'd be creating a new variant of said virii.

DNR
-
He gives wisdom to the wise and knowledge to the discerning. He reveals deep and hidden things; he knows what lies in Darkness, and Light dwells with him.

Post Reply