Anti-Spyware Forums


Reply
Thread Tools Display Modes

How can u get stuxnet binary?

 
 
David H. Lipman
Guest
Posts: n/a

 
      06-10-2010, 01:17 AM
From: "Virus Guy" <(E-Mail Removed)>

| "David H. Lipman" wrote:

>> Please drop me an email Virus Guy!


| Um, that's probably not going to happen Dave.

| If you're going to give me a tongue-lashing, you might as well do it in
| public.

NNTP-Posting-Host: 41.178.70.113

http://www.faqs.org/faqs/computer-vi...ng-guidelines/

UNWELCOME POSTS

e. Posts that do nothing more than ask for viruses or source code. If you want viruses,
look for them yourself.

a.c.v is NOT a malware distribution point for unvetted personal requests.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp


 
Reply With Quote
 
 
 
 
Virus Guy
Guest
Posts: n/a

 
      06-10-2010, 01:38 PM
"David H. Lipman" wrote:

> > How can u get stuxnet binary?


> a.c.v is NOT a malware distribution point for unvetted personal
> requests.


Ask, and you shall receive.

Information, Dave.

It wants to be free.

http://en.wikipedia.org/wiki/Informa...nts_to_be_free

If we all work together, we can make it happen.
 
Reply With Quote
 
 
 
 
FromTheRafters
Guest
Posts: n/a

 
      06-10-2010, 08:23 PM
"Virus Guy" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
> "David H. Lipman" wrote:
>
>> > How can u get stuxnet binary?

>
>> a.c.v is NOT a malware distribution point for unvetted personal
>> requests.

>
> Ask, and you shall receive.
>
> Information, Dave.
>
> It wants to be free.
>
> http://en.wikipedia.org/wiki/Informa...nts_to_be_free
>
> If we all work together, we can make it happen.


You could refer them to the pro-virus or source-code groups, then post
your malware URL there. This group has become decidedly *anti* malware.


 
Reply With Quote
 
FromTheRafters
Guest
Posts: n/a

 
      06-10-2010, 08:27 PM
"~BD~" <~BD~@nomail.afraid.org> wrote in message
news:(E-Mail Removed)...
> David H. Lipman wrote:
>
> [....]
>>
>> Seems people forget the charter of A.C.V !
>>

>
> Many people have probably never even *seen* it!


Ignorance of the law is *no* excuse! D

http://www.faqs.org/faqs/computer-virus/mini-faq/


 
Reply With Quote
 
David H. Lipman
Guest
Posts: n/a

 
      06-10-2010, 09:14 PM
From: "Virus Guy" <(E-Mail Removed)>

| "David H. Lipman" wrote:

>> > How can u get stuxnet binary?


>> a.c.v is NOT a malware distribution point for unvetted personal
>> requests.


| Ask, and you shall receive.

| Information, Dave.

| It wants to be free.

| http://en.wikipedia.org/wiki/Informa...nts_to_be_free

| If we all work together, we can make it happen.

Asking for malware is simply against the group's charter.
Malicious binaries is NOT information.

Please respect the group's charter. Someting that predate's your presence and opinion.

I for one have been participtaing in A.C.V since around late '94, '95.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp


 
Reply With Quote
 
Virus Guy
Guest
Posts: n/a

 
      07-10-2010, 12:51 AM
FromTheRafters wrote:

> You could refer them to the pro-virus or source-code groups,
> then post your malware URL there. This group has become
> decidedly *anti* malware.


This group is alt.comp.virus.

Not alt.comp.ANTI-virus.
 
Reply With Quote
 
David H. Lipman
Guest
Posts: n/a

 
      07-10-2010, 01:03 AM
From: "Virus Guy" <(E-Mail Removed)>

| FromTheRafters wrote:

>> You could refer them to the pro-virus or source-code groups,
>> then post your malware URL there. This group has become
>> decidedly *anti* malware.


| This group is alt.comp.virus.

| Not alt.comp.ANTI-virus.

http://www.faqs.org/faqs/computer-virus/mini-faq/

2) Many people have asked why alt.comp.virus is decidedly anti-virus in nature. Because
of the large proportion of anti-virus producers and end users in the group, viruses are
considered to be poor use of computer resources, and the open distribution of them to be
irresponsible.



--
Dave
http://www.claymania.com/removal-trojan-adware.html
Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp


 
Reply With Quote
 
Virus Guy
Guest
Posts: n/a

 
      07-10-2010, 01:19 AM
"David H. Lipman" wrote:

> Asking for malware is simply against the group's charter.


A charter that was last updated in 1999. What a joke.

> Asking for malware is simply against the group's charter.


=====================
UNWELCOME POSTS

Posts that do nothing more than ask for viruses or source code.
If you want viruses, look for them yourself. They aren't that
hard to find.

ON-TOPIC POSTS

Discussions of tests of anti-virus products

Posting snippets of source code to elaborate on a point or further
the discussion is fine
====================

How can any discussion relating to the internal mechanics of stuxnet be
ok, even posting a "snippet" of it's code, yet asking for or posting a
link to a safe sample of the actual item of the discussion is NOT ok?

How illogical is that?

I see nothing wrong with posts that ask for links to malware samples in
this group. The inescapable fact is that anyone asking for such a link
here is NOT going to be a threat to global internet users even if they
are supplied with the desired link.

It's the (malicious or devious) people that know where to find these
samples and who don't ask where or read this newsgroup that you should
be worried about.

There simply is not enough discussion of the mechanics of current
malware here in this group, and trying to put a damper on the idea that
posting links to actual mal-code or mal-files doesn't help the
discussion and analysis of malware, which is what should be happening in
this group.

> Malicious binaries is NOT information.


I did not post a malicious binary.

I posted the location where a copy of said binary could be obtained
from. That is information.

================
Post it on a web page or FTP site (as above) or in the
newsgroup alt.comp.virus.source.code.
================

Notice that the charter does not list answering requests for malware
samples under Unwelcome Posts.

> Please respect the group's charter. Someting that predate's your
> presence and opinion.


The charter needs to be updated.

A newsgroup is what we make of it. When was the last time George Wenzel
(the author or maintainer of the charter) posted anything here?
 
Reply With Quote
 
Hos_poes Hos_poes is offline
Junior Member
Join Date: Apr 2012
Posts: 1

 
      02-04-2012, 08:13 PM
Quote:
Originally Posted by Virus Guy View Post
"David H. Lipman" wrote:

> | is there is any website which offer it or generally any viruses
> | i think it will be exciting if we can reverse engineer it ourself
> | instead of the AVs
> |
> | anyone have idea?


> Simple answer to this...
>
> No.


Actually, the simple answer is - yes.



Look in the subdirectory "stuxnet core" for the file:

maindll.decrypted.unpacked.dll_

Submit it to virus total. The result will come back (mostly) as
worm.stuxnet.
How do i open that .dll file?
 
Reply With Quote
 
 
 
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Stuxnet PLC infection FromTheRafters Anti-Virus 0 01-10-2010 01:46 PM
ESET Stuxnet Paper SJL Spyware 2 27-09-2010 10:47 AM
Iran was prime target of Stuxnet SCADA worm Virus Guy Anti-Virus 5 18-09-2010 08:18 AM
Get ubuntu ! Get ubuntu ! Get ubuntu ! Get ubuntu ! Getubuntu Virus Information 4 02-06-2009 04:58 AM
Get ubuntu ! Get ubuntu ! Get ubuntu ! Get ubuntu ! Getubuntu Security Software 0 31-05-2009 09:02 PM


All times are GMT. The time now is 09:20 PM.