Embedded malware

fido · #1 May 15th, 2012, 01:53 AM

Is it possible to embed a malicious code in an image without distorting it? Can the executable extract itself and execute while the image is getting downloaded?

Rmus · #2 May 15th, 2012, 12:55 PM

Quote:

Originally Posted by fido

Is it possible to embed a malicious code in an image without distorting it?

Yes.

Quote:

Can the executable extract itself and execute while the image is getting downloaded?

This depends on several things. See:

malware enbeded in .jpg, .doc
http://www.wilderssecurity.com/showthread.php?t=251875
post #16 and following, esp. #33

Advisory: Specially crafted JPEG images can be used to execute arbitrary code
http://www.opera.com/support/kb/view/926/
see post #30 in the above thread

----
rich

fido · #3 May 18th, 2012, 01:07 AM

Is there any tool available for embedding the code in images?

Quote:

Originally Posted by Rmus

Yes.

This depends on several things. See:

malware enbeded in .jpg, .doc
http://www.wilderssecurity.com/showthread.php?t=251875
post #16 and following, esp. #33

Advisory: Specially crafted JPEG images can be used to execute arbitrary code
http://www.opera.com/support/kb/view/926/
see post #30 in the above thread

----
rich

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search