[<prev] [next>] [day] [month] [year] [list]
Message-ID: <1149445049.4400.12.camel@localhost.localdomain>
Date: Sun, 04 Jun 2006 20:17:29 +0200
From: Joxean Koret <joxeankoret@...oo.es>
To: Full Disclosure <full-disclosure@...ts.grok.org.uk>,
Security Tracker <bugs@...uritytracker.com>, bugtraq@...urityfocus.com
Subject: Multiple Vendor NTFS Data Stream Malware Stealth
Technique
Hi to all!
Because it isn't a new problem and is well known by virus and spyware
writters I decide to release to the public now. Full disclosure.
Attached goes a simple paper that describes this "very-advanced"
technique that was applicable at 1993 and is currently applicable.
Regards,
Joxean Koret
Disclaimer
----------
The information in this advisory and any of its
demonstrations is provided "as is" without any
warranty of any kind.
I am not liable for any direct or indirect damages
caused as a result of using the information or
demonstrations provided in any part of this advisory.
---------------------------------------------------------------------------
Contact
-------
Joxean Koret at joxeanpiti<<<<<<<<@>>>>>>>>yah00<<<<<<dot>>>>>es
View attachment "multiple.vendor.ntfs.stream.txt" of type "text/plain" (2749 bytes)
Download attachment "signature.asc" of type "application/pgp-signature" (190 bytes)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists