Re: Can a DLL be a virus?
From: Ian Kenefick (flick_at_iol.ie)
Date: 05/03/04
- Next message: BRG: "Re: NTL proxy server?"
- Previous message: cquirke (MVP Win9x): "Re: Can a DLL be a virus?"
- In reply to: cquirke (MVP Win9x): "Re: Can a DLL be a virus?"
- Next in thread: E2E t-bot BT: "Re: Can a DLL be a virus?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 03 May 2004 22:32:05 +0100
cquirke (MVP Win9x) wrote:
> On Mon, 03 May 2004 17:01:40 +0100, Ian Kenefick <flick@iol.ie> wrote:
>
>
>> to answer your question about a dll being a virus.
>
>
> Yes, .DLL can be viral in various ways...
> - existing .DLL infected by Win32 code infector
> - pure malware .DLLs that form part of the malware
> - pure malware .DLLs that *are* the malware
>
> RATs like to use .DLL, getting these to run when Windows starts via
> RunDLL.exe or RunDLL32.exe - as they then pass through firewalls via
> the RunDLL "wrapper" that's usually known and accepted by the firewall
>
>
>
>>-- Risk Management is the clue that asks:
>
> "Why do I keep open buckets of petrol next to all the
> ashtrays in the lounge, when I don't even have a car?"
>
>>----------------------- ------ ---- --- -- - - - -
Good answer ;-)
- Next message: BRG: "Re: NTL proxy server?"
- Previous message: cquirke (MVP Win9x): "Re: Can a DLL be a virus?"
- In reply to: cquirke (MVP Win9x): "Re: Can a DLL be a virus?"
- Next in thread: E2E t-bot BT: "Re: Can a DLL be a virus?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
