Home page logo
/

basics logo Security Basics mailing list archives

a strange file
From: migalo digalo <l.epsilon () gmail com>
Date: Wed, 18 Jan 2006 12:30:12 +0000

 i have descovred a strange file (it seems crypted) in my pc and in
the pc of a friend too! the file have the name (data) and is present
in C drive (c:\data)

 here i post the content (not all) of this file:
 ---------------------------
-BEGIN FILE DUMP
------------------------------------------------------------------
 const char * vGGY3 =
"poH5fE7ofWDVb7P8IthCkodZM5AEC3Z2c7rSn1EpauvCQyEIaNFI6QkXZpWG9Gmgrg8s2jvTiUGxpODovfUXt1GLjBXVXfuW3KGcPmqfhRqw";
 const char * vJo8mDfo5CyfU9 = "NlBb73ITslIVY4feE2hb84b0ukyZZ41";
 const char * vRgOhphN62LPt =
"b3FL1Bx8DmCYva3rwB3bErfwEeBqCoayEngFV4VCnf7B47eQmusVASdBcAb2af7LUAmWFmYbOmdoO71ADeuIHJKHtPCKAgMLSxJ6SfFdSPjd7";
 const char * vGpRLf6oU9fH =
"xqkce5QJa7GAZ1ehqDX1tL8jvRRK9YRx4I4dQacGcIXCmZwDng7WDTcKFmFdCfugbRctseAEFZv4wVGoksXfLOOxQQ";
 const char * vAjVVc =
"NFdFWaKIH7pfCJlD3XiJcn6gSCcAbjwbyvQk4gAf2iCeWeokCH9lEc20";
 const char * vhEoV7PZ6DlBUd =
"9RXgkPFH0BqxaABCPISPddF82FDnwdndlAJ4bxEMoLN1bcuEY1QG6d26EeKdrYVB88wEyWg9IGs1tWiAZwOV1NcFC";
 const char * veye0Geh2C =
"me3GKL1MONF4OBXAkfGPmgnPKaakoFWEoxlFEClIdBh2cOX22E5K2e9F0CculLKFWf";
 const char * v09Q7h4GiYs1 =
"ac3nEASAVK0hyxDWKaHAM1PewedJCYYGiHAcZfaiYgaK81XuEadaeTTLdmHaa9wd5U1hJblfft1W8YB6CitdDTfQEpdE9gb0NExPmnrFICs";
 const char * vHfGhym =
"uLEwb6Mbr9DMcOdGeaaZS2okSI4Nxef4M2WprUiRFBCT8dsG2PTCrSGs0CueZcf9ebZXCt";
 const char * vdldFy =
"etobcGxFPj42oJKeYBxdqenZfAIFrAMnJd0ZesGPF03Ayae6OsQpiEWeDfxC9HjEuKaCF6C3fLrdPcMqUvEL7ZC9eJMN";
 const char * vDfg63CAKx = "U36wdFCuFSNGc9ZXQKBEKA";
 const char * ve2B9eB2a1Ir = "nifidry1ib";
 const char * vGAvAvbyGJ = "ZftalcGdlyihk1KdKPE";
 const int vfJtQoThCW = 25360;
 const int vLqGcTc9CHAyE = 18467;
 const int vOpEf = 10234;
 const int vQntxasxdGa = 3686;
 const int vbE01E9BRPbdCA = 29270;
 const int vh0qaT3gx8deqN = 28100;
 const int vZbmbT3B4 = 14438;
 const int v5bOIZ7r = 29497;
 --------------------------------------------- END FILE DUMP
--------------------------------------------------------------------

 i think it provide same strings and ints for a potentiel malware !
 can you please tell what's this exactley?
 thank you
 sorry for my bad english :)

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]