crash3rzz
Feb 11 2004, 02:39 AM
MyDoom.a_Code
work
bin2c.c
cleanpe.cpp
crypt1.c
rot13.c
stub.exe
xproxy
client.c
makefile
xproxy.c
_Main_Dir_
_readme.txt
lib.c
lib.h
main.c
makefile
massmail.c
massmail.h
msg.c
msg.h
p2p.c
resource.ico
resource.rc
scan.c
scan.h
sco.c
sco.h
xdns.c
xdns.h
xsmtp.c
xsmtp.h
zipstore.c
zipstore.h
30 Files \\ 2 Folders
Damn these virus creators lol
peace
FireAlwaysWorks
Feb 11 2004, 03:04 AM
Damn you, the moment i herd about this i set up a honeypot on port UDP 3127. I was hopeing i could get it. Anyway, thanks for the post.
Peace
studnikov
Feb 11 2004, 04:41 AM
nice ! i want @ this one
PacMan03
Feb 11 2004, 05:20 AM
anyone know what stub.exe does?
ni3_boom
Feb 11 2004, 06:09 AM
thx man u help us alot
damulint
Feb 11 2004, 07:30 AM
Good..!!
Thank U..
very nice source..
I want to get it..
^^
studnikov
Feb 11 2004, 10:39 AM
stub.exe is a small real-mode program which attaches to executable code . Like add ware.
Thom
Feb 11 2004, 10:45 AM
Should recode it alittle and make it spread my files
jead99
Feb 11 2004, 11:06 AM
Looks very nice, gonna go through the code and maybe get some good ideas
Copkill
Feb 11 2004, 06:31 PM
Cool ,big thx,i want to look at this.
r3L4x
Feb 12 2004, 12:13 AM
simple question
how did this leak?
did the author post it?
i hope he knows theres a 250k bounty on his head
crash3rzz
Feb 12 2004, 12:46 AM
leak ? hehe, nope i discovered it my self.. on another pc of my that i have infected
this aint no leak
ease to find all this
r3L4x
Feb 12 2004, 12:50 AM
uh right
*cough bull shit cough*
isaiah
Feb 12 2004, 01:03 AM
| QUOTE (crash3rzz @ Feb 12 2004, 12:46 AM) |
leak ? hehe, nope i discovered it my self.. on another pc of my that i have infected
this aint no leak ease to find all this |
he probly made the worm l0l
Krogoth
Feb 12 2004, 02:07 AM
thanks for the source, i'll check this one if it works.
crash3rzz
Feb 12 2004, 02:11 AM
lol i wish
hahah
r3L4x
Feb 12 2004, 04:14 AM
| QUOTE (isaiah @ Feb 12 2004, 01:03 AM) |
| QUOTE (crash3rzz @ Feb 12 2004, 12:46 AM) | leak ? hehe, nope i discovered it my self.. on another pc of my that i have infected
this aint no leak ease to find all this |
he probly made the worm l0l
|
judging by the amount of idiots that get cuaght by bragging i would say ya, he might of. (if not, the creator probably goes to this forum)
ALSO because UPXredir was released on this forum and the creator used it for a quick and dirty method of making vB und.
you decide
zero-maitimax
Feb 12 2004, 09:25 AM
ppl couldn't anybody sa/help me .. how you decompile?
i mean normaly if do it it's in asm..
so how did you get the c source?
tnx..
FakoLy
Feb 12 2004, 10:23 AM
hmmmm thanx for this nice source dude i'mma have a look at it
+++ regards
crash3rzz
Feb 12 2004, 12:28 PM
relax view the code
and see how i got it
heh
r3L4x
Feb 13 2004, 04:10 AM
| QUOTE (crash3rzz @ Feb 12 2004, 12:28 PM) |
relax view the code
and see how i got it
heh |
redownloaded, nothing new
mind telling in plain english?
crash3rzz
Feb 13 2004, 12:42 PM
yeahh since you so curious... the files after installation leaves
a file in everydrive sync-src-1.00.tar\zip
it contains whole source code...
we have it on . www.k-otik.com , but in french
thats how i got it...
i hacked into few pcs.. and i saw same files..
i downloaded them and opened... search for the file in the source code
im out to work l8rz
slynx
Feb 13 2004, 09:48 PM
.....this cannot be mydoom.a code. when it's compiled into taskmon.exe and checked against mydoom.a from an infected email there are major differances (enough that the new .exe is not detected by AV)....
has anyone else noticed this? this has me confused as all (filtered) hell.....
r3L4x
Feb 14 2004, 12:56 AM
| QUOTE (crash3rzz @ Feb 13 2004, 12:42 PM) |
yeahh since you so curious... the files after installation leaves
a file in everydrive sync-src-1.00.tar\zip
it contains whole source code...
we have it on . www.k-otik.com , but in french
thats how i got it...
i hacked into few pcs.. and i saw same files..
i downloaded them and opened... search for the file in the source code
im out to work l8rz |
just read an article on it
tricky indeed
sry about all that...
crash3rzz
Feb 14 2004, 02:41 AM
np
jak3c
Feb 15 2004, 07:02 PM
héhéhéhé very good piece fo code !
thanks you!
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
