Bugtraq mailing list archives
Multiple Vendor NTFS Data Stream Malware Stealth Technique
From: Joxean Koret <joxeankoret () yahoo es>
Date: Sun, 04 Jun 2006 20:17:29 +0200
Hi to all! Because it isn't a new problem and is well known by virus and spyware writters I decide to release to the public now. Full disclosure. Attached goes a simple paper that describes this "very-advanced" technique that was applicable at 1993 and is currently applicable. Regards, Joxean Koret Disclaimer ---------- The information in this advisory and any of its demonstrations is provided "as is" without any warranty of any kind. I am not liable for any direct or indirect damages caused as a result of using the information or demonstrations provided in any part of this advisory. --------------------------------------------------------------------------- Contact ------- Joxean Koret at joxeanpiti<<<<<<<<@>>>>>>>>yah00<<<<<<dot>>>>>es
Attachment:
multiple.vendor.ntfs.stream.txt
Description:
Attachment:
signature.asc
Description: Esta parte del mensaje está firmada digitalmente
Current thread:
- Multiple Vendor NTFS Data Stream Malware Stealth Technique Joxean Koret (Jun 05)
- <Possible follow-ups>
- Re: Multiple Vendor NTFS Data Stream Malware Stealth Technique Andreas Marx (Jun 06)
- Re: Multiple Vendor NTFS Data Stream Malware Stealth Technique Gadi Evron (Jun 08)