Vulnerability Development: Re: Infected jpeg files? (viruses)

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development mailing list archives

Re: Infected jpeg files? (viruses)

From: Jonathas Diogenes Castello Branco <jonathas () lia ufc br>
Date: Sat, 10 Nov 2001 20:14:15 -0200 (BRST)


I think it's possible to create a virus that infects win32 binaries that
contains images. Part of the code would be on the executable area, and the
other part could be in a Icon image. This would make easier for larger
viruses to hide themselves in an bigger executable file.

Jonathas

On Sat, 10 Nov 2001, Rob Salmond wrote:

If memory serves, from my days of Mac use you should be able to do a
straight ResEdit on the file who's icon you wish to modify.  Much the same
way you can alter the icon of a win32 binary with similar reshacking
programs.  When the .res file is added during compilation its a standard
.ico file added as static data to the binary.

Win32: http://www.rpi.net.au/~ajohnson/resourcehacker/
Mac: http://www.resexcellence.com/resedit.shtml

hope this helps,
Rob.

By Date By Thread

Current thread:

Re: Infected jpeg files?, (continued)
- Re: Infected jpeg files? jove (Nov 09)
  - Re: Infected jpeg files? J Edgar Hoover (Nov 09)
  - Message not available
    - Re: Infected jpeg files? HackHawk (Nov 09)
    - Re: Infected jpeg files? Rob Salmond (Nov 10)
    - Re: Infected jpeg files? (viruses) Jonathas Diogenes Castello Branco (Nov 10)
    - Re: Infected jpeg files? Brad (Nov 10)
- Re: Infected jpeg files? J Edgar Hoover (Nov 09)
- Re: Infected jpeg files? Mathias Dybvik (Nov 09)
- Re: Infected jpeg files? terry white (Nov 09)
  - Re: Infected jpeg files? H C (Nov 09)