Rootkit for Win7 and Vista !!!

NOTICE

RE - Rootkit for Vista and Win7 !!! https://www.wilderssecurity.com/showthread.php?t=268042

Even though my original thread had a screenie of the RK's features etc from the authors website, with non clickable links etc, it was felt that too much information was still contained within it. So i've remade this new thread without that info.

If this, and possibly others to come, start being utilised from now on, which is what they are intended for, then there could be BIG problems. So just please be aware that Nothing is 100% safe, or probably ever will be.

Whistler Bootkit a new powerful windows bootkit

:

http://blog.novirusthanks.org/2010/02/whistler-bootkit-a-new-powerful-windows-bootkit/

 

Nothing really new here. The original was free (open source project) to download for anyone interested in the loader. Whistler is simply just a re-hash.

 

Is it based on the mbr Stoned Bootkit?

 

Yes, its just a rip off of Stoned Bootkit.

 

@Meriadoc

Let's hope your right Sounded like there was though !

Yeah i know Whistler is simply just a re-hash of the Stoned Bootkit, but even so those RK boys and girls arn't script kiddies anymore, so who knows what they might be able to do with it ?

It did say a 64 Bit version was planned, in which case that could make it more lethal

Guess we'll soon see, one way or the other.

 

I am not shure, but if this operates in the part of the kernel, where security programs are not allowed to operate, i guess we are all doomed . If it gets in, it is there until you reformat.

 

What hidden place would that be?
Is it creating its own Hidden/Host Partition/Protected Area?
Or, is it using the space set aside for replacing bad sectors?

 

@Searching

Don't know, but i'd like to.