Hello There, Guest!
View New Posts  |  View Today's Posts
Be Careful of Updates! [Important Information]

  • 0 Vote(s) - 0 Average


08-15-2011, 11:38 AM #11
AceInfinity
Developer
*******
Administrators
Posts: 9,733 Threads:1,026 Joined: Jun 2011 Reputation: 76

RE: Be Careful of Updates! [Important Information]
Actually, you have an idea there, what if they had a method to take an input and calculate it's value?

Even if they had to use something as simple as A=1, B=2, etc... And the total unique key ID would have to be something like 50 in sum. If it wasn't then they input key on the phone would return a voiced message "This key is invalid, please make sure you entered it correctly." This would raise less suspicion if they had inputted the wrong key given, making it seem more legit.

After all that process, it would give you another key to put back into the application (A random spoken key with some standardized value again) And if the trojan recognized that value hidden behind that unique key, it would unlock your computer. The key doesn't have to be Unique to each computer, it could be a random generated key with a hidden value that only the trojan would recognize...

If they thought about that for this trojan of theirs, I think it would have been a perfectly engineered malware "system".

The only thing needed would be a phone bot that could calculate random ID's with a hidden standard value that both the phone bot and the trojan could recognize. Then it wouldn't' matter what key was inputted to the phone bot, and what key was received by the phone bot, but each would be different.
This post was last modified: 08-15-2011, 11:40 AM by AceInfinity.


Microsoft MVP .NET Programming - (2012 - Present)
®Crestron DMC-T Certified Automation Programmer

Development Site: aceinfinity.net

 ▲
 ▲ ▲

08-15-2011, 03:53 PM #12
iNFIDEL_
Member
**
Posts: 56 Threads:10 Joined: Jun 2011 Reputation: 0

RE: Be Careful of Updates! [Important Information]
Genius!
The infected paid the developer not for the serial key but paid for the calls. Its like a trick within a trick, inside a trick. ><

08-16-2011, 04:41 AM #13
Posts: 228 Threads:18 Joined: Jul 2011 Reputation: 9

RE: Be Careful of Updates! [Important Information]
Sad thing is the phone system you wouldn't want to take down, because it does help those that have been infected. It's the virus and developers that you would want to take down. And since you wouldn't want to take the phone system down, the developers are half way being supported by everyone.

08-16-2011, 05:55 AM #14
AceInfinity
Developer
*******
Administrators
Posts: 9,733 Threads:1,026 Joined: Jun 2011 Reputation: 76

RE: Be Careful of Updates! [Important Information]
(08-16-2011, 04:41 AM)clifford_cooley Wrote:  Sad thing is the phone system you wouldn't want to take down, because it does help those that have been infected. It's the virus and developers that you would want to take down. And since you wouldn't want to take the phone system down, the developers are half way being supported by everyone.

That's true too, there's no more of a direct way of getting that legit key to the victims, even if you were to broadcast it, it wouldn't reach out to everyone.


Microsoft MVP .NET Programming - (2012 - Present)
®Crestron DMC-T Certified Automation Programmer

Development Site: aceinfinity.net

 ▲
 ▲ ▲

08-19-2011, 02:36 AM #15
Ghoster
٩(◕▽◕)۶
*****
Posts: 1,236 Threads:162 Joined: Jun 2011 Reputation: 16

RE: Be Careful of Updates! [Important Information]
(08-15-2011, 10:05 AM)Ace Wrote:  You need to watch THIS video to see how incredibly Genius this trojan really is... It's unbelievable how much they've engineered this:



Well, poop. If that isn't the most well organized trojan I've ever seen. It's pretty ridiculous the extent people go to to make a quick buck.

08-19-2011, 03:36 AM #16
Nuno Brito
Team Reboot
Team Reboot
Posts: 351 Threads:13 Joined: Aug 2011 Reputation: 10

RE: Be Careful of Updates! [Important Information]
Good post, sad to see people getting their files hijacked in this manner.
Want to help TLF? Place tech.reboot.pro on your signature around the web. Let's help TLF grow! :)




Forum Jump:



Users browsing this thread: 1 Guest(s)