After completeing W32/Harulf ,I have nothing todo much lately and the following two months will be so,regarding vx or whatever coding shit…. The only treat i had today the release of new song of one of my favourite metal bands SF, the song name is (lambchild of death) Get it from (saddamsfamily.com/lambchild_of_death.mp3)
A reminder goes to whoever wants gainig some credits ipressing the future generation of vxers!! you can still contirubte to the next joint zine visit (eof-project.net) for info.
Permalink
No Comments
Nothing to do lately so I decided to code atoi() [asci to integer] in asm. I got two codes one is ok,the other one is crazy fuck brute force depends on wsprintf().
here 1 , 2
for any comments ,bugs(i am expecting!) drop a comment.
Permalink
No Comments
From describing 29A as a virus reasearch group (symantec) to describing them as a gang!!(sophos) , one thing interrupted my mental masturbation:
“But somehow, we feel this is probably not the last time we’ll hear from this motley crew” –Posted by Symantec Security Response
Now a Security blog starts to tell future!
Permalink
No Comments
Avers may feel victorious, Glad, Horny! The satan of their religion is gone, but this monster got defeated by time and other things rather than Avers ridiculous blogs and products!
From my point of view 29A was dying since their last zine, and fairly I dislike the word ‘dead’ for a group like 29A ,since their great work still motivating alot of new vxers.
At the end..
Farewell 29A you were the orgasm of the scene that never reached such pleasure and satisfaction before!
for more info visit the 29A site
Permalink
No Comments
I paid a visit to the norman sandbox,which I found this code couldbe enough to bypass norman sandbox emulator edtection and somehow f-secure emulator too(not sure 100% about the latter), see the following code: Read the rest of this entry »
Permalink
No Comments
Today I noticed the option on virustotal.com (”Dont distribute sample”) was disabled ,they put an explanation for that on their blog ,in short they explained that decision was taken as a result of the continuous AVers complaints about how its been used by virii developers to create new UD samples.
Well… Read the rest of this entry »
Permalink
1 Comment
Happy new year everybody……..
call @f
push 0c3h
@@:
pop edx
jmp $-5
Permalink
1 Comment
I think by now most of people related to VX-scene read what Peter Ferrie wrote on Symantec Security Response Blog .
I thought of it too, vx-scene is dying in my perspective and in old retired elite the scene is already dead,because of the lack of real asm or at least complicated codes.
see these two links from the past(29A#6)
Z0MBiE
Benny
Imagine , that the whole vx-scene dying gossip was from that time 2001.
For me I think the scene still have the chance to revive but it needs real vxer who
Will not feel okey until they create.. ---- from Z0MBiE article.
Lets wait to see the new combined zine,and hope for future new creative vxers.
Permalink
1 Comment
After a very boring weak for a grinch type of person! things seem a bit moving:
-First , The storm worm on their xmas propagation try, used Fast-Flux technique but this time the IP changed every 1sec! I made myself a list of IPs by making a loop lasted for about 7 min ,Most of the IPs I got are unique,makes me wonder how many zombies did they jam into that attack! In the same occasion I got my own binary copy of storm worm (at last).
-Second, Read the rest of this entry »
Permalink
2 Comments
