Re: Avi or mpeg virus possible ?
- From: "David H. Lipman" <DLipman~nospam~@Verizon.Net>
- Date: Fri, 06 Jul 2007 00:37:13 GMT
From: "Todd H." <comphelp@xxxxxxxxx>
|
| That's what I'm talking about.
|
| An embedded netcat listener, for example, is surely an example of
| malware, and these can be made extremely tiny in size, and embedded
| right into a media file crafted against a specific media viewer's
| vulnerability. View the media file, get owned by by malware. No
| external moving parts required.
|
Viewing will not extract a binary. You need a helper application to extract a binary from a
graphic or moving graphic file.
The Tibs Trojan is well known to do this with the well known FroggerEXE.
The EXE files are stored in JPEGs and all you see is a simple Frog in a picture.
Viewing the Frog in the JPEG will not extract the EXE. An external program has to do it.
The same holds true for; AVI, MOV, MPEG, etc.
--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm
.
- Follow-Ups:
- Re: Avi or mpeg virus possible ?
- From: Sebastian G.
- Re: Avi or mpeg virus possible ?
- References:
- Avi or mpeg virus possible ?
- From: nightwing_97838
- Re: Avi or mpeg virus possible ?
- From: David H. Lipman
- Re: Avi or mpeg virus possible ?
- From: Todd H.
- Re: Avi or mpeg virus possible ?
- From: David H. Lipman
- Re: Avi or mpeg virus possible ?
- From: Todd H.
- Avi or mpeg virus possible ?
- Prev by Date: Re: Error 502: Concurrent Connections Limit in Avast!
- Next by Date: Re: Avi or mpeg virus possible ?
- Previous by thread: Re: Avi or mpeg virus possible ?
- Next by thread: Re: Avi or mpeg virus possible ?
- Index(es):
Relevant Pages
|
