[zero-maitimax]

ppl new exploit in xp


if you change a html file in .folder . xp will change the icoon als a map.

but

if you dubbel click on it it open as a html. you can put in a html jave script that excute an exe file..

the exploit is ver high becaurs program's like winzip see it as a folder



some jave script
http://www.malware.c...e-cute-html.zip

[boshcash]

i dont understand what u r saying but i think these are oldies ..

[zero-maitimax]

oke


wel you justed make a html file with jave script in it.. and in the jave script you put a exe file (trojan)

now you change the .html to .folder


now the icoon change in to a folder icoon..


but if you dubbel klik on the folder it open de orignaal html file..

and excute the exe(trojan)



if you pack this folder in winzip you still see a folder icoon even in winzip .. but again if you dubbel klik on it will excute the origanaal html file

[zero-maitimax]

tnx you have traid it :D


i'm good :P

[EXPLOiTED]

ok that makes sense. but when what exe are u gonna exec?...i hope OS's dont come with premade trojans on them. Would that mean you have to get the trojan u wanna exec on their system as well?

[zero-maitimax]

some more info
http://lists.netsys....-January/016115. html

example (TrojanDropper.JS.Mimail.B)
http://www.malware.com/my.pics.zip

[larsbruggie]

I was so n00b that I opened illmob's my picture.folder , now I am infected

[zero-maitimax]

http://lists.netsys....ary/016115.html


larsbruggie i'm sorry for yeah..



i found more stuff


.dvd
.audiocd
.mapimail
.mydocs


solution i found is HKEY_CLASSES_ROOT/.folder delete it.. ( don't know if it is wrong but the exploit doesn't excist no more at my machiene)

[hdlgp]

I prove this exploit and works, :D