Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: Online Script Decoder
From: Feher Tamas <etomcat () freemail hu>
Date: Mon, 13 Dec 2004 11:14:18 +0100 (CET)


Is anyone able to decode this malware/exploit script-encoded :

It's a trojan-dropper called VBS.Zerolin and it tries to
download an executable file also belonging to the
trojan-downloader family. It is called malware Win32.Zdesnado.Y

What that exe file tries to download, I don't know.

The place in the above URL should be CERTed down for sure.

Sincerely: Tamas Feher.
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]