Sign In
Create Account
Follow Us on Twitter
Subscribe on Youtube
Do any one of you know where to find Sasser worm source code or code red
7 replies to this topic
Back to top|
|
|
#2
Posted 20 February 2009 - 12:42 PM
WingedPanther
-
- Moderators
-
- 16,831 posts
A spammer's worst nightmare
Why would you want them? Also, I really doubt the source code has been released.
#3
Guest_Jordan_*
Posted 20 February 2009 - 04:05 PM
Guest_Jordan_*
Guest_Jordan_*
-
- Guests
Good question, what would you want with the source?
#4
Posted 20 February 2009 - 04:22 PM
jwxie518
-
- Members
-
- 1,180 posts
Speaks fluent binary
just a doubt: isn't it a illegal thing to do? to release a malicious source code to the open Internet without any regulation and consent?
#5
Posted 20 February 2009 - 07:15 PM
WingedPanther
-
- Moderators
-
- 16,831 posts
A spammer's worst nightmare
I wrote a "malicious" program in Basic years ago. It was a while loop that incremented forever, poking 0 into consecutive memory addresses in RAM. It crashed my computer.
Writing malicious software is easy. Of course, wiping every file off a hard drive isn't always bad :)
Writing malicious software is easy. Of course, wiping every file off a hard drive isn't always bad :)
#6
Posted 20 February 2009 - 07:15 PM
WingedPanther
-
- Moderators
-
- 16,831 posts
A spammer's worst nightmare
I wrote a "malicious" program in Basic years ago. It was a while loop that incremented forever, poking 0 into consecutive memory addresses in RAM. It crashed my computer.
Writing malicious software is easy. Of course, wiping every file off a hard drive isn't always bad :)
Writing malicious software is easy. Of course, wiping every file off a hard drive isn't always bad :)
#7
Posted 21 February 2009 - 06:22 AM
Affix
-
- Members
-
- 47 posts
Learning Programmer
It is legal in the United Kingdom and the United States to publish Malware Source code.
However you must disclose that it is intended for educational Purposes only and it must not be fully functioning. I.e It must not spread itself.
If you wan't the source code to the exploit that SASSER.F spread itself using you can see it here
MS Windows ASN.1 LSASS.EXE Remote Exploit (MS04-007)
The exploit SASSER.F used was the lSASS exploit and that is how it got its name.
The exploits official tag was MS04-007
This exploit is used by Botnet trojans under the name ASN.1 or lsass445
It exploits the lsass.exe process by overflowing the buffer allowing you to execute your own code.
Sasser done this by using a local FTP Server the virus installed on the Host system and executing shellcode to run a command on the target system using port 445 or 139(win 2k and lower) to download using the FTP Command supplied by Microsoft in you're Windows System
However you must disclose that it is intended for educational Purposes only and it must not be fully functioning. I.e It must not spread itself.
If you wan't the source code to the exploit that SASSER.F spread itself using you can see it here
MS Windows ASN.1 LSASS.EXE Remote Exploit (MS04-007)
The exploit SASSER.F used was the lSASS exploit and that is how it got its name.
The exploits official tag was MS04-007
This exploit is used by Botnet trojans under the name ASN.1 or lsass445
It exploits the lsass.exe process by overflowing the buffer allowing you to execute your own code.
Sasser done this by using a local FTP Server the virus installed on the Host system and executing shellcode to run a command on the target system using port 445 or 139(win 2k and lower) to download using the FTP Command supplied by Microsoft in you're Windows System
#8
Posted 22 March 2009 - 08:42 AM
idontgiveafudge
-
- Members
-
- 1 posts
Newbie
[link deleted]
theres the source code! good luck!
theres the source code! good luck!
Edited by WingedPanther, 23 March 2009 - 03:20 AM.
link to potentially malicious code.
