Full Disclosure mailing list archives
RE: Virus infections
From: "Debasis Mohanty" <mail () hackingspirits com>
Date: Thu, 24 Nov 2005 08:10:09 +0530
This sober *FBI/CIA* variant seems to have strike back with the intention to make *news* which it failed to make when it was originally released first time in the month of Feb (2005). I encountered it in the month of Feb and since there were no AV advisories around, I reverse engg it to find out the 'payload' but there were no destructive payload and it was just a mass mailler. A reverse analysis report can be downloaded from the following link - http://www.hackingspirits.com/eth-hac/papers/Fake-FBI-Worm-Analysis.zip - T (aka D) -----Original Message----- From: full-disclosure-bounces () lists grok org uk [mailto:full-disclosure-bounces () lists grok org uk] On Behalf Of pingywon Sent: Thursday, November 24, 2005 12:34 AM To: Geo.; full-disclosure () lists grok org uk Subject: Re: [Full-disclosure] Virus infections yes indeed this Sober virus is ramping up pretty quick. Alot of my clients have called me today asking about emails they have received. Here is all the latest info on it. http://vil.mcafeesecurity.com/vil/content/v_137072.htm ~pingywon MCSE _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: Hacking Boot camps!, (continued)
- Re: Hacking Boot camps! Ivan . (Nov 22)
- Re: Hacking Boot camps! ReK2GNULinux (Nov 22)
- Re: Hacking Boot camps! wilder_jeff Wilder (Nov 22)
- Re: Hacking Boot camps! sk / GroundZero (Nov 24)
- Re: Hacking Boot camps! xyberpix (Nov 29)
- Re: Hacking Boot camps! Exibar (Nov 23)
- Virus infections Geo. (Nov 23)
- Re: Virus infections Gary E. Miller (Nov 23)
- Re: Virus infections pingywon (Nov 23)
- RE: Virus infections Paul Craig (Nov 23)
- RE: Virus infections Debasis Mohanty (Nov 23)
- Re: Hacking Boot camps! InfoSecBOFH (Nov 23)
- Re: Hacking Boot camps! Koen Van Impe (Nov 23)
- Re: Hacking Boot camps! InfoSecBOFH (Nov 23)
- Re: Hacking Boot camps! Michael Holstein (Nov 23)
- RE: Hacking Boot camps! Clement Dupuis (Nov 23)
- RE: Hacking Boot camps!: certifications wilder_jeff Wilder (Nov 23)
- RE: [inbox] RE: Hacking Boot camps!: certifications Exibar (Nov 25)
- Re: Hacking Boot camps!: certifications R S (Nov 25)
- Re: Re: Hacking Boot camps!: certifications Valdis . Kletnieks (Nov 25)
- Re: Hacking Boot camps!: certifications R S (Nov 25)