Why doesn't TDS-3 detect this? Pff

Discussion in 'Trojan Defence Suite' started by CoNzisT, Nov 22, 2004.

Thread Status:
Not open for further replies.
  1. CoNzisT

    CoNzisT Registered Member

    Joined:
    Nov 22, 2004
    Posts:
    6
    I've gone hunting on the net for "homewritten" trojans & keyloggers and just found one released today! NOD32 doesn't detect this with heuristics enblaed either... And Wormguard doesn't do any good. very dissapointing... If anyone want's to analyze or check out the file I've uploaded it here :
    Link Removed as it is against our TOS Pilli
    BTW in the readme it says -J3n7il's editserver encryption... Hmm?
    It's packed with UPX
     
  2. Pilli

    Pilli Registered Member

    Joined:
    Feb 13, 2002
    Posts:
    6,217
    Location:
    Hampshire UK
    Hi, Links of this type are not permitted :)
    However I have passed the link on to those that may want to investigate.

    TDS3 can handle some unpackers but needs customising for others, to do so you will find information regarding this in the Private TDS3 forum at DCS, This forum is available only to licensed users I'm afraid

    Many unpackers can be taylored to bypass AV's & AT's that is why DCS developed ProcessGuard which will stop process execution and the installation of the unpacked Trojan.

    All part of a layered defence.

    Pilli
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.