Maximize
Bookmark

VX Heaven

Library Collection Sources Engines Constructors Simulators Utilities Links Forum

Source code of computer viruses

Orochi - Virus for Windows by Henky

Virus for Windows

Henky
Show all viruses by this author

2000-03-00

Comments
Download orochi.zip (32062 bytes) or browse online

Released in Matrix#1

Author's notes

-AUTHOR:        HenKy H0l0kausT [MATRiX]
-MAIL:          [email protected]
-ORIGIN:        SPAIN (MARCH 2000)
-TARGET:        PE EXE/SCR & HTM FILES LAST SECTION INCREASE ...
-OS'S:          W32 COMPATABLE W95/98 NT4/5 & 2000 (NOT TESTED IN THE LAST OS'ES)
-MULTIPARTITE   YES (PE->HTM)
-RESIDENT:      YES (RING0)
-STEALTH:       NO
-THREADS:       NO (DUH?)
-FIBERS;        NO (..)
-KERNEL SEARCH: YES
-ENCRYPTED:     YES (VERY ENCRYPTED: POLY + two RDA layers )
-POLYMORPHIC:   YES ... LAME SLOW-POLY LAYER ... TO TIRED ... :DDDDDDDD
-ANTIDEBUGGER:  YES (HYPER-ANTI-DEBUG)
-ANTITRACE:     YES
-ANTIEMULATOR:  YES (HYPER-ANTI-EMUL)
-ANTIDISASM:    YES
-ANTIHEURISTIC: YES
-ANTIBAIT:      YES
-ERROR HANLING: YES (SEH)
-RETRO:         YES (BYE, BYE AV'S)
-COMPRESSION:   NO (FUCKED LZ ALGORITHM :/
-EPO:           NO
-ANTIWATCHDOGS: YES (AVPM,AMON & NAV)
-CHECKSUM:      NO (IN THE NEXT VERSION I WILL MEMORY-MAP THE FILES ;)
-OTHERS:        IS A VERY UNSTABLE VIRUS, IT WONT INFECT NTOSKRNL.EXE IN NT AND NOT HAVE A BIG CHANCE TO SURVIVE IN THE WILD. HD-SCANNER... ETC... A BIT EJEHM... )'VERY' SLOW ....
-PAYLOAD:       THE 3 OF JULY IN DISPLAY A MESSAGE-BOX, THEN MAKE A GRAPH EFFECT (HI LJ'S)

By accessing, viewing, downloading or otherwise using this content you agree to be bound by the Terms of Use! vxer.org aka vx.netlux.org