Hey Frenzz...
Researchers at McAfee have discovered Pastebin source code is very similar to a botnet client program. The code is simple, logically linked and contains the entire set of required functions. It seems that the program has been tested and completed.
Besides the standard options (install, copy the folder Windows \ System32 \, sent to the server OS, the user name and botID, receive commands from the server, update), the program contains some interesting additional features: it is to check if a sandbox and traffic monitoring programs such as OllyDbg or Wireshark. In both cases, the program stops the activity, not to find himself.
Apparently, the code is written in a competent and experienced programmer. Publish on Pastebin may be an attempt to sell the source code, or the demonstration of skills in employment.
Researchers at McAfee have discovered Pastebin source code is very similar to a botnet client program. The code is simple, logically linked and contains the entire set of required functions. It seems that the program has been tested and completed.
Besides the standard options (install, copy the folder Windows \ System32 \, sent to the server OS, the user name and botID, receive commands from the server, update), the program contains some interesting additional features: it is to check if a sandbox and traffic monitoring programs such as OllyDbg or Wireshark. In both cases, the program stops the activity, not to find himself.
Apparently, the code is written in a competent and experienced programmer. Publish on Pastebin may be an attempt to sell the source code, or the demonstration of skills in employment.
0 comments:
Post a Comment