[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] The reason why "Pangolin is backdoor"

To: <full-disclosure@xxxxxxxxxxxxxxxxx>, <websecurity@xxxxxxxxxxxxx>
Subject: [Full-disclosure] The reason why "Pangolin is backdoor"
From: "zwell.nosec" <zwell.nosec@xxxxxxxxx>
Date: Thu, 27 Mar 2008 14:19:02 +0100

Pangolin really is a backdoor? Let's do this step to make sure: 
1.Download UPX from upx.sf.net 
2.In cmd shell, run "upx.exe -d pangolin.exe" 
3.Upload the new pangolin.exe(actually the origin) to virustotal 
4.Check the result again 
I do these, and the result is: 
http://www.virustotal.com/analisis/b9d55c751d5eed7b34cda3fe708b1bd7 

We can see
Kaspersky,Sophos,F-Secure,CAT-QuickHeal,F-Prot,Ikarus,AntiVir,Prevx1,TheHack
er,Webwasher-Gateway will not alert any more. 

You judge what is it! Or maybe we should think about what does these
Antivirus do??? 

Thanks ;)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] The reason why "Pangolin is backdoor"
  - From: Razi Shaban

Prev by Date: [Full-disclosure] [SECURITY] [DSA 1529-1] New Firebird packages fix several vulnerabilities
Next by Date: Re: [Full-disclosure] The reason why "Pangolin is backdoor"
Previous by thread: [Full-disclosure] [SECURITY] [DSA 1529-1] New Firebird packages fix several vulnerabilities
Next by thread: Re: [Full-disclosure] The reason why "Pangolin is backdoor"
Index(es):
- Date
- Thread