[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
"PGP key stealing virus Caligula" available for download atcodebreakers.org
"PGP key stealing virus Caligula" is available for download on the
codebreakers site now -
-----from the web site-----
Espionage enabled viruses. Designed to collect/steal information.
May be vertically targeted or horizontally deployed.
There's a bright future for "espionage enabled" viruses. Consider a
virus that spreads only to machines that have a copy of PGP.
Use virus checking software"
-Quoted from: Practical Attacks on PGP by Joel McNamara
Challenge accepted Joel! may i present:
Virus Name: WM97/Caligula
Author: Opic [CodeBreakers]
Info: Caligula is a Stealth WM97 SR1(2)-compatible virus.
It is unique in the manner that it is one of the first
espionage enabled viruses (ie: steals information).
Caligula steals PGP Secret Keyrings from infected users
and uploads them onto the internet. More specifically
it uploads them to: CodeBreakers.Org
The virus spreads to users regardless of if they own PGP
or not (joel doesnt know much about propagation techniques)
but it will only upload the infected users key once (to
avoid uploading multiple copies of the key. Caligula places
a marker in the Windows registry to signal the PGP theft has
been sucessful. on the 31st of the month caligula displays
a messagebox which reads:
WM97/Caligula (c)Opic [CodeBreakers 1998]
"Could map our veins."
and the following properties are also given to infected
Title: WM97/Caligula Infection
Subject: A Study In Espionage Enabled Viruses.
Comments: The Best Security Is Knowing The Other Guy Hasn't Got Any.
Keywords: | Caligula | Opic | CodeBreakers |
Packet Storm Security http://packetstorm.genocide2600.com/
Trinux: Linux Security Toolkit http://www.trinux.org/ ftp://ftp.trinux.org
PGP DH/DSS/RSA Public Keys http://packetstorm.genocide2600.com/pgpkey/
E.H.A.P. VP & Head of Operations http://www.ehap.org/ email@example.com
NCSU Computer Science http://www.csc.ncsu.edu/ firstname.lastname@example.org