Government Security
Network Security Resources

Jump to content

Undetectable Trojans

- - - - - virus trojan
  • Please log in to reply
96 replies to this topic

#91 tandex

tandex

    Private

  • Members
  • 9 posts

Posted 22 April 2010 - 02:45 AM

If full source code is available (.h and .cpp files), how to edit it safely, keeping the functionality intact, without touching anything, for the purpose to change signature of re-compiled binary? Which files and which places?

#92 zerodoom3

zerodoom3

    Private

  • Members
  • 3 posts

Posted 07 December 2010 - 01:06 PM

i can help you.

here is a tool where you can make trojan horse & much more undetectable by anti-virus. cos it works like this, the trojan have a code is detectable or not by av ("not" when it have a new code not know by av database) if its detectable you can code the code! and then its again undetectable, i try to explain in easy language so you can understand.
-> http://www.mediafire...php?oyi0yfyiyi4
*RUB 3 JOINER/DECRYPTER/PATCHER :

here you have a more advanced way of bypass anti-virus
http://www.offensive...ntivirus_Bypass



and want some hack tools here you have. (Remote Windows Administration Tools)
http://www.nuclearwi...lear_RAT_2.1.0/

or

subseven / sub7
http://subseven.org/

or

http://prorat.net/

#93 zerodoom3

zerodoom3

    Private

  • Members
  • 3 posts

Posted 07 December 2010 - 01:45 PM

http://www.nuclearwi...w/38/UPX_Crypt/
UPX is a free tool for encrypt & decrypt

is a program for coding the trojan horse code!

or

Daemon Crypt

you can use too, but is harder to find on the internet!

#94 zerodoom3

zerodoom3

    Private

  • Members
  • 3 posts

Posted 07 December 2010 - 01:52 PM

this is one of the best social engineering attacks by using java exploit by using compromised pc's web browser!
http://www.offensive-secur ity.com/metasploit-unleash ed/SET_Java_Applet_Attack

#95 remove

remove

    Private First Class

  • Members
  • 56 posts

Posted 26 April 2012 - 05:53 AM

• Stealth/Undetected
• Verschlüsslung (Encryption)
• Polymorph
• Metamorph
• Retro

are the main sections of encrypt malware. they can also be combined. greets remove

#96 fergiee

fergiee

    Private

  • Members
  • 5 posts

Posted 10 June 2012 - 01:04 AM

To make a trojan undetectable to the antivirus, you need to know assembly code. The way you would make it undetectable would be:

1. Somehow find the strings of code, or "signatures" included in all antivirus programs to detect viruses and trojans.
2. Find the signature of the trojan you wish to make undetectable,
3. Try to find this string of code inside your trojan by splitting it.
4. Then disassemble it and insert a few extra bits of code that would not affect the program, but would change the detectable part of code enough to make it unrecognisable to the AV.

Now, the trojan would be undetectable, because you have modified it enough for it not to be recognised by the antivirus. Of course, this is an extremely complex thing to attempt, and I don't even know any assembly or machine code, so there are definitely more things you would have to do than I have described, I am just not experienced enough to know about this. So I doubt you would be able to make a trojan undetectable, to do that you have to know machine code and assembly, which is much harder than normal programming languages like c++ because machine code is directly interpreted by the processor, you have to know about how antivirus programs work, and you have to have the right tools to use, like disassemblers etc. So basically, it's not as simple as "here, download this program and it will make all your trojans undetectable", you have to have a lot of knowledge and experience to be able to modify binary programs. If you really wanted to know, you could probably ask some of the admins and moderators of this forum, they might know, although they wouldnt help you if you said you were doing this to a trojan.

#97 infiltrator

infiltrator

    Staff Sergeant

  • Sergeant Major
  • 421 posts

Posted 19 July 2012 - 06:26 PM

I'm using TrendMicro Interner security and it detects all trojans i have tried.
Does anyone know a really undetectable trojan?


If you are referring to RAT, I would suggest looking into crypters. They are designed to keep your trojan undetected. So no need to rewrite the trojan code itself. You can either acquire free ones, but these can be quite ineffective, generally the paid ones do a better job at remaining undetected for long period of times.





Also tagged with one or more of these keywords: virus, trojan