Page 1 of 2 12 LastLast
Results 1 to 15 of 17

Thread: 2 malware video tutorials by Fifo

  1. #1
    me :)
    Join Date
    Mar 2006
    Location
    Croatia
    Posts
    25

    2 malware video tutorials by Fifo

    by Fifo

    Modifying Malware To Make Them Undetectable, [video tutor]

    http://rapidshare.com/files/20951367/ModifyingMalware.rar

    Finding Signatures Detected In Malware, 2nd video tutor

    http://www.megaupload.com/?d=AI0HNDQG


    EDIT: see post below for direct links to these files and the codec required to view them - Kayaker

  2. #2
    Naides is Nobody
    Join Date
    Jan 2002
    Location
    Planet Earth
    Posts
    1,647
    And your point is??

  3. #3
    me :)
    Join Date
    Mar 2006
    Location
    Croatia
    Posts
    25
    nothing just posting tutorials..
    it's forbidden or?

  4. #4
    Naides is Nobody
    Join Date
    Jan 2002
    Location
    Planet Earth
    Posts
    1,647
    Not forbidden, quite the contrary, encouraged. But the files that you posted, at least on the virtual machine I played them, those avi's contain only high quality audio, with excellent guitar playing, by the way.
    So my question stands,
    Your point is??

    (I made an ASS of myself)

  5. #5
    Teach, Not Flame Kayaker's Avatar
    Join Date
    Oct 2000
    Posts
    4,084
    Blog Entries
    5
    Let's deal with this properly shall we..

    Thank you Vrane for the contribution, much appreciated.

    Since files never last long on those sites, I have uploaded them to the server for ever and anon.

    They both require the TechSmith Screen Capture Codec, which I have also uploaded to the server, or you can get directly from the codec site:
    http://www.techsmith.com/download/codecs.asp


    http://www.woodmann.com/malware/Finding Signatures Detected In Malware_Fifo.zip
    (127,877Kb)

    http://www.woodmann.com/malware/Modifying Malware To Make Them Undetectable_Fifo.zip
    (76,223Kb)

    Codec for Windows Media Player:
    http://www.woodmann.com/malware/TechSmith Screen Capture Codec.zip
    (159Kb)


    Cheers,
    Kayaker

  6. #6
    <script>alert(0)</script> disavowed's Avatar
    Join Date
    Apr 2002
    Posts
    1,281
    OMG... a video codec that actually installs and works on Vista!

  7. #7
    Naides is Nobody
    Join Date
    Jan 2002
    Location
    Planet Earth
    Posts
    1,647
    I apologize to Vrane.
    I had not installed the CODECS inside the virtual machine, and neither windows player or nero player complained about the lack of codecs, so I thought you were playing a joke of some sort.

  8. #8
    me :)
    Join Date
    Mar 2006
    Location
    Croatia
    Posts
    25
    hehe np

  9. #9
    naides:

    You've just experienced how an old American joke originated, which goes like this:

    When you "assume," you make an "ass" out of "u" and "me."



    We still luv ya anyway.

    Regards,
    JMI

  10. #10
    <script>alert(0)</script> disavowed's Avatar
    Join Date
    Apr 2002
    Posts
    1,281
    Or the Samual L. Jackson way of saying it... "when you make an assumption, you make an ass out of 'u' and 'umption'."
    (see http://www.imdb.com/title/tt0116908/quotes)

  11. #11
    That movie was recently on one of my local channels and I watched it again.

    Regards,
    JMI

  12. #12
    N8di8
    Guest
    I had a look at the "finding sigs" tutorial. The guy who made this tut seems to be an absolute beginner. There are dedicated tools for finding sigs (e.g., sigtool, girardin's offset finder, avpoffset, UK splitter, etc.). The burdensome procedure described in this tut is redundant. Also the second tut is not the real deal. It confuses "undetected" with "undetectable". Moreover, it only deals with KAV. Other scanners use different sigs. Therefore, a different (holistic) approach is required in order to make malware "stealth".

    But I like the sound of the tuts. So relaxing. Wish I had more time for reversing, coding, messing with malware *sigh*

    FYI: there are tuts describing how to encrypt malware in memory /w ollydbg. This is really dangerous stuff.
    Last edited by N8di8; March 17th, 2007 at 13:41.
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  13. #13
    u published the tutor without asking me!!!!
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  14. #14
    N8di8
    Guest
    LoL. Now it's getting funny

    Is a "bad" VXer entitled to copyright protection in a reverse engineering forum?
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  15. #15
    Teach, Not Flame Kayaker's Avatar
    Join Date
    Oct 2000
    Posts
    4,084
    Blog Entries
    5
    The same copyright permissions were requested for the background music on the tutorials I believe

Similar Threads

  1. video tutorial
    By sawer in forum OllyDbg Support Forums
    Replies: 3
    Last Post: November 11th, 2006, 19:28
  2. Driverstudio 2.7 and video problem
    By Cps530 in forum Tools of Our Trade (TOT) Messageboard
    Replies: 12
    Last Post: January 12th, 2003, 16:25
  3. YUY2 video references
    By Nodens in forum Advanced Reversing and Programming
    Replies: 1
    Last Post: August 12th, 2001, 02:33
  4. My new video board and SoftIce 4.05
    By Snacker in forum Tools of Our Trade (TOT) Messageboard
    Replies: 3
    Last Post: December 31st, 2000, 05:26

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •