[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Unpacking Sasser

To: Tom K <keetch_tw@xxxxxxxxxxx>
Subject: Re: [Full-Disclosure] Unpacking Sasser
From: Andrew Ruef <jabberwocky@xxxxxxxxxxxxx>
Date: Sun, 02 May 2004 12:22:31 -0400

I would also like a copy, please. 

Thank you.

On Sun, 2004-05-02 at 04:37, Tom K wrote:
> Stupidly I was infected with Sasser last night and whilst trying to identify 
> the program I found that the code was packed and I could find no way of 
> idenifying the packer from the EXE (avserve.exe produced no relevant hits on 
> Google). Could anyone tell me what unpacker to use to analyse the code? And 
> how was this determined?
> 
> Cheers in Advance.
> 
> Tom
> 
> P.S: If anyone would like a copy of the file to look at, feel free to ask.
> 
> P.S.S: This is my first post, go easy. ;)
> 
> _________________________________________________________________
> FREE pop-up blocking with the new MSN Toolbar  get it now! 
> http://toolbar.msn.com/go/onm00200415ave/direct/01/
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Unpacking Sasser
  - From: -

References:
- [Full-Disclosure] Unpacking Sasser
  - From: Tom K

Prev by Date: RE: [Full-Disclosure] A rather newbie question
Next by Date: Re: [Full-Disclosure] Unpacking Sasser
Previous by thread: Re: [Full-Disclosure] Unpacking Sasser
Next by thread: Re: [Full-Disclosure] Unpacking Sasser
Index(es):
- Date
- Thread