.

Injecting Virus in pics...

<<

rok

Newbie
Newbie

Posts: 39

Joined: Sun Apr 27, 2008 2:18 am

Post Sat Jul 26, 2008 2:02 am

Injecting Virus in pics...

Injecting xss or shell in picture(jpeg or etc) works very nice.I made my small childish lab last night and was tring to actually injecting a virus(.exe) in a picture and then hosted it.So when I tested on me,it did not infect me..is it possible actually to small .exe servers in pics...


I know it's Unethical,just for knowledge purpose.Hope you understand.
<<

shakuni

Jr. Member
Jr. Member

Posts: 80

Joined: Sun Nov 04, 2007 2:24 pm

Post Mon Jul 28, 2008 9:19 am

Re: Injecting Virus in pics...

You can find it easily on the web. And if you can't find it then probably this info is not safe in your hands.
There is no rule, law or tradition that apply universally... including this one.
<<

rok

Newbie
Newbie

Posts: 39

Joined: Sun Apr 27, 2008 2:18 am

Post Tue Jul 29, 2008 6:44 am

Re: Injecting Virus in pics...

shakuni wrote:You can find it easily on the web. And if you can't find it then probably this info is not safe in your hands.



I just want to know,is it possible for an exe format to act like a mp3..?Only binding won't work here..please help
<<

Negrita

User avatar

Sr. Member
Sr. Member

Posts: 299

Joined: Sat Sep 10, 2005 5:45 pm

Location: /dev/null

Post Tue Jul 29, 2008 2:01 pm

Re: Injecting Virus in pics...

Try working your way through these; http://www.hellboundhackers.org/challenges/stegano/index.php. You'll have to register at that site first. Once you've done the challenges, I believe that you'll be able to answer your own question.
CEH, CCSA NG/AI, NNCSS, MCP, MCSA 2003

There are 10 kinds of people, those that understand binary, and those that don't.
<<

geekyone

User avatar

Full Member
Full Member

Posts: 180

Joined: Fri Oct 26, 2007 12:45 pm

Location: Peoria, IL

Post Tue Jul 29, 2008 4:12 pm

Re: Injecting Virus in pics...

Thanks for the link Negrita!  It looks like a cool site.
CISSP, CEH, GPEN, GCIH, GCFA
<<

Negrita

User avatar

Sr. Member
Sr. Member

Posts: 299

Joined: Sat Sep 10, 2005 5:45 pm

Location: /dev/null

Post Wed Jul 30, 2008 1:21 pm

Re: Injecting Virus in pics...

My pleasure.  :)
CEH, CCSA NG/AI, NNCSS, MCP, MCSA 2003

There are 10 kinds of people, those that understand binary, and those that don't.
<<

rok

Newbie
Newbie

Posts: 39

Joined: Sun Apr 27, 2008 2:18 am

Post Thu Jul 31, 2008 6:19 am

Re: Injecting Virus in pics...

Thans for the link.

But it's more of steganography,steg will only hide the data,but it won't be executed..??
<<

Kev

Sr. Member
Sr. Member

Posts: 428

Joined: Sat Sep 29, 2007 12:26 pm

Post Fri Aug 01, 2008 10:10 am

Re: Injecting Virus in pics...

I think you will find what you are trying to do is difficult, unless you force the pic to open as an html and exploit the browser. 
<<

oleDB

User avatar

Recruiters
Recruiters

Posts: 236

Joined: Thu Jul 20, 2006 8:58 am

Location: HOA

Post Fri Aug 01, 2008 10:34 am

Re: Injecting Virus in pics...

Most of the stuff I've seen revolves around buffer overflows that occur when images(GIF, ANI, etc) are processed and shellcode is tacked on. I believe with the onload function in javascript and probably activeX as well, you can have whatever you want executed when the image is loaded on the page.
<<

oneeyedcarmen

User avatar

Full Member
Full Member

Posts: 233

Joined: Thu Jul 05, 2007 2:13 pm

Location: Baltimore, MD USA

Post Fri Aug 08, 2008 2:08 pm

Re: Injecting Virus in pics...

Apparently this garnered some attention at BlackHat this week.  Rich Mogull gave a little write up about it over on Securosis, but I've been seeing a lot of others talking about it, too.
Reluctant CISSP, Certified ASS
<<

RoleReversal

User avatar

Hero Member
Hero Member

Posts: 928

Joined: Fri Jan 04, 2008 8:54 am

Location: UK

Post Sat Aug 09, 2008 3:34 am

Re: Injecting Virus in pics...

Oneeyedcarmen,

thanks for the link, I haven't come across that attack vector before. Unfortunately it sounds fairly promising (one more reason to disable javascript, thank you NoScript).

Was anyone at this talk @ Blackhat? more technical information regarding the vector would be good.
<<

oneeyedcarmen

User avatar

Full Member
Full Member

Posts: 233

Joined: Thu Jul 05, 2007 2:13 pm

Location: Baltimore, MD USA

Post Sat Aug 09, 2008 9:23 am

Re: Injecting Virus in pics...

a few of our lurkers and occasional posters were there, so hopefully we'll get some more detail when they return
Reluctant CISSP, Certified ASS
<<

geekyone

User avatar

Full Member
Full Member

Posts: 180

Joined: Fri Oct 26, 2007 12:45 pm

Location: Peoria, IL

Post Sat Aug 09, 2008 7:50 pm

Re: Injecting Virus in pics...

Here is a link from one of the presenters with some information about it.

http://blogs.zdnet.com/security/?p=1666
CISSP, CEH, GPEN, GCIH, GCFA
<<

oneeyedcarmen

User avatar

Full Member
Full Member

Posts: 233

Joined: Thu Jul 05, 2007 2:13 pm

Location: Baltimore, MD USA

Post Mon Aug 11, 2008 1:32 pm

Re: Injecting Virus in pics...

Nate and Rob discuss the GIFAR talk on the Network Security Podcast
Reluctant CISSP, Certified ASS

Return to Malware

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software