|
-
August 26th, 2003, 11:20 AM
#1
how to get the sobig.f virus
please tell me how to get the sobif.f virus program.
i want to analysising .
-
August 26th, 2003, 12:13 PM
#2
Drop an unpatched win2k box on the net for a few hours - you're almost guaranteed to get it
Slarty
-
August 26th, 2003, 12:48 PM
#3
slarty that will only get you blaster.. sobig is a mail virus
so just post your mail addy on a public site and open up your outlook (express)..
be sure to enable the preview function.. and you'll be sure to get infected..
ASCII stupid question, get a stupid ANSI.
When in Russia, pet a PETSCII.
Get your ass over to SLAYRadio the best station for C64 Remixes !
-
August 26th, 2003, 12:53 PM
#4
here kitty kitty... here kitty kitty..
bang..
easier captured dead.. they don't bite that way!
"Consumer technology now exceeds the average persons ability to comprehend how to use it..give up hope of them being able to understand how it works." - Me http://www.cybercrypt.co.nr
-
August 26th, 2003, 03:07 PM
#5
Oi! Don't hurt the Kitty :P
With all the subtlety of an artillery barrage / Follow blindly, for the true path is sketchy at best. .: Bring OS X to x86!:.
Og ingen kan minnast dei linne drag i dronningas andlet den fagre dag Då landet her kvilte i heilag fred og alle hadde kjærleik å elske med.
-
August 26th, 2003, 03:13 PM
#6
deadforg,
Please be careful!.......this really is not a game. You should not attempt to analyse a live virus on a production machine, one that you share or one that is owned by someone else...........you will damage yourself and others!
You need a dedicated "laboratory" or "sacrificial goat" box, that does not matter if it gets killed.
Another point is, that if your defences are any good, they should not let you do such a thing? So you need to be running an undefended (sacrificial) system.............please do not do this on a network 
I am put in mind of the tale in Greek mythology about Pandora's Box?.............if you let one of these things loose you harm others, so be CAREFUL!!!
I would recommend going to the AV sites such as Symantec, Nai, Panda, Kaspersky and so on; and reading up their analyses first. You then need to set yoursef up with the proper hardware and software environments..........hey, a lot of this stuff is encrypted, polymorphic, compressed etc.........?
Once again.......please be careful...these things are dangerous, and you might harm innocent bystanders.
Cheers
-
August 26th, 2003, 03:18 PM
#7
Originally posted here by the_JinX
slarty that will only get you blaster.. sobig is a mail virus
so just post your mail addy on a public site and open up your outlook (express)..
be sure to enable the preview function.. and you'll be sure to get infected..
Sobig.F doesn't exploit any flaw in Outlook. So enabling the preview will not get you infected. For Sobig.F to infect your machine the user must run it. But you don't have to infect your machine to analyse it. Just be on the lookout for emails with an attachment that ends in .pif or .scr. Save this attachment and start analyzing.
See the Virus Information Library for more details on how to recognise Sobig.F.
Oliver's Law:
Experience is something you don't get until just after you need it.
-
August 26th, 2003, 03:28 PM
#8
havent u got mails containing it....i wonder....pass it on to some AV company they have a lot of clients being infected..........they may provide u one
guru@linux:~> who I grep -i blonde I talk; cd ~; wine; talk; touch; unzip; touch; strip; gasp; finger; mount; fsck; more; yes; gasp; umount; make clean; sleep;
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
