Penetration Testing mailing list archives
Re: [PEN-TEST] Suspect .EXE Trojan
From: Marty Richards <marty () netwaynetworks com au>
Date: Sun, 17 Dec 2000 18:57:43 +1100
If you have access to a Linux or other unix type box, the easiest way is to run 'strings' on the file. That will give you all the text information contained within it and would tell you any registry keys modified or files accessed etc.
or you can cheat on the windoze platform and just open it in wordpad... ;) Cheers, Marty
Current thread:
- Re: [PEN-TEST] Suspect .EXE Trojan, (continued)
- Re: [PEN-TEST] Suspect .EXE Trojan Eaton, Arthur (Dec 15)
- Re: [PEN-TEST] Suspect .EXE Trojan Ben Ford (Dec 15)
- Re: [PEN-TEST] Suspect .EXE Trojan Nexus (Dec 16)
- Re: [PEN-TEST] Suspect .EXE Trojan Pierre Vandevenne (Dec 16)
- Re: [PEN-TEST] Suspect .EXE Trojan MadHat (Dec 16)
- Re: [PEN-TEST] Suspect .EXE Trojan Nexus (Dec 16)
- Re: [PEN-TEST] Suspect .EXE Trojan Frank Knobbe (Dec 16)
- Re: [PEN-TEST] Suspect .EXE Trojan Andrew Lawton (Dec 16)
- Re: [PEN-TEST] Suspect .EXE Trojan Bob Dog (Dec 16)
- Re: [PEN-TEST] Suspect .EXE Trojan Tomi Tuominen (Dec 19)
- Re: [PEN-TEST] Suspect .EXE Trojan Jensen, Greg (Dec 17)
- Re: [PEN-TEST] Suspect .EXE Trojan Marty Richards (Dec 18)