The Perfect Virus??

it sounds like you watch too much movies. there no such thing as a good virus. in my opinion, a good virus is a patch.

The only reason why there is no good virus, is because no one has writen one! (I could be wrong on that one, but I have never heard of that one)

Im not the kind of person who would go releasing viruses but, i do believe in education and i while ago me and a friend of mine made r progrmmed polymorphic virus that could learn the traits of other virus found on the computer it infects. It might be smart but not always effiecient you need to programmin in assembler to get an efficient start but when it take to many other virus on board it gets bit and sluggish! :)

My idea of the perfect virus is one that doesn't exist ;) However, I don't believe one can exist, no matter how perfect the code is. All software has some bugs in it, and it can't be made perfectly to do exactly what it's intent is for. So, the answer is No.

Look at the way AV detects a virus. Usually through some kind of pattern matching. Eg, the E-mail attachment for virus X is always Y KB is size && ends in .scr && is named A | B | C....etc. Or, virus X modifies registry key P upon execution. That's the kind of stuff that you usually get in your weekly DAT file update. A stateful based in-line hardware AV device may do a little bit statefull examination and bit pattern matching when it's still on the wire. Example.... Virus X will always display a bite pattern of 11011010 00001100 11100101 01011100 in bytes 48-51 after the header. Still, this is based on a "known" virus pattern. After Day 0, you simply have to apply the update. Packet filtering firewalls can catch them when they always come in on a particular port (Saphire anyone?). So again, after it's been IDed, and information published about it, if you get hit, it's because your stupid. Finally, there is Host Based Intrusion Detection which will monitor the behavior of your machine, and deny system resources to something that appears to be acting maliciously. Though Code Red evaded just about everything on Day 0, a well baselined and configured HIDS prevented it from eating any of my critical servers. There are lots of other detection methods, but you get the idea.

So how to write the perfect virus? Well, it would have to change ports, have no fixed bit patterns, be able to change it's own file name, attack random files with it's payload. etc. Essentially it would have to be the electronic equivalent of an ameoba. Difficult indeed. Personally, if I were determined to write a virus, I wouldn't write it as a single piece of code. I'd break it into multiple blocks of benign code that would only activate when all present on the same system. Then I'd come up with some kind of dissemination method. Naturally, you'd want to "spread the blame" and disseminate from several different sources. Although for good vectoring you'd want to increase your likelyhood of getting as many machines as possible to self assemble all your blocks of code. Now you've got to do a target audience analysis. Let's pretend you want to get back at everyone who collects porcelin kittly cats. You might set up a web-site dedicated to porcelin cats. On that site you might have a down loadable catalog of all your kitty cats for sale (code block 1) You might also offer up a porcelin kitty screen saver (code block 2) and then you might have a link to an interactive site with a "save the porcelin kitty" game (code block 3 thanks to malicious active x or java). Finally, on yet another (seemingly unrelated) site you might get someone to download a macro infested spread sheet (final code block) to send money to the "Porcelin kitty foundation of lower Rwanda". Now all the pieces are in place, now the payload can be delivered. If our clueless (L)user is visiting all the porcelin kitty sites while (s)he is supposed to be at work, you've now defeated the firewall, the AV scan, the E-mail trip wire, and the inline detection system. You've probably even gotten HIDS beat for a long enough time to propagate your virus because it will only look like a routine system call and not an outside access as soon as it kicks itself off. Now..........if you managed to write a sweet enough piece of code that it meets the "ameoba" criteria outlined above, and propegates itself through truly random chunks of benign looking code, you might get a virus that isn't beaten by Day 1. Maybe.

Sounds like a lot of work just to be a pain in somebody's butt.

I like the idea of a "good" virus. and i beleive as was stated they are not here for the fact that virii have always been made malisciously. If it was a good virus, would it then be called a vacine?? EHEHEH but it woudl be kinda neat to find otu if the "good" virii would get the same negative endorsement that Hackers have from Crackers, or would they actually be accepted? just afew things to think about but i do like the idea.

Can a perfect virus be created? The answer is simple, 'No'.

Viruses have to be programmed by humans, humans are not perfect. There is bound to be a mistake somewhere which will eventually rise up and bite the virus in the behind. The next thing, even if the virus was not coded by humans and it was coded a supercomputer of some sort, like that Earth Simulator I think it was Japan that made it, with over 30 000 Gigaflops, it will never be perfect because the computer was built by humans and has imperfections, and these imperfections will be passed onto the virii code.

But hey, whats wrong with dreamin'? Yeah, it can be created..... in my imangination!

Have you read The Blue Nowhere? I like Phates little program/virus. If it were possible.

There's the proggy mentioned in this thread: http://www.antionline.com/showthread...light=gigabyte That's sorta a good virus, tho I suppose a virus by definition is malware.

There could be such thing as the perfect virus it would have to fend for itsself and make duplicates and change its own source code but this is very unlikey that any one could make this unless your a very good programmer (and i mean good)