|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: msblast.exe available
From: Jamie Pratt (jamie
nucdc.org)
Date: Wed Aug 13 2003 - 07:03:11 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
I keep getting "No page to display, or file not found.." for that link -
anyone have another?
David.Pavoneapcc.com wrote:
>
> Symantec has done a pretty good job:
>
> <-Clip->
> Symantec has been tracking its activity and is
> currently conducting analysis/full disassembly of the malicious code,
> which has been named "Blaster". The results of our analysis are
> being made available to the public at the following location:
>
> https://tms.symantec.com/members/AnalystReports/030811-Alert-DCOMworm.pdf
>
> It is expected that this report will be updated frequently as more
> information is discovered. Readers are advised to download/refresh
> it throughout the day to ensure that any new information is not missed.
>
> David Mirza Ahmad
> Symantec
>
> <end-clip->
>
> David Pavone
> Senior IT Systems Analyst - Infrastructure Services Group
> david.pavoneapcc.com
> 1-401-789-5735 Ext. 2036
> APC - American Power Conversion
>
>
>
> |---------+--------------------------->
> | | "Sekurity |
> | | Wizard" |
> | | <s.wizardbounda|
> | | riez.com> |
> | | |
> | | 08/11/2003 11:27|
> | | PM |
> | | |
> |---------+--------------------------->
> >-------------------------------------------------------------------------------------------------------------------------------|
> | |
> | To: <incidentssecurityfocus.com> |
> | cc: |
> | Subject: RE: msblast.exe available |
> >-------------------------------------------------------------------------------------------------------------------------------|
>
>
>
>
>
> Has anyone dis-assembled this puppy yet, to get a good idea of what the
> heck it does, exactly? I'm working on it and would like to collaborate
> with anyone?
>
> ./Wiz
>
> -----Original Message-----
> From: Chris McNab [mailto:chris.mcnabtrustmatta.com]
> Sent: Monday, August 11, 2003 6:47 PM
> To: bugtraqsecurityfocus.com
> Cc: incidentssecurityfocus.com
> Subject: msblast.exe available
>
>
> Hi,
>
> This is publicly available for analysis from:
>
> www.trustmatta.com/downloads/msblast.exe
>
> Regards,
>
> Chris
>
> Chris McNab
> Technical Director
>
> Matta Consulting
> 18 Noel Street
> London W1F 8GN
>
> 08700 77 11 00
>
> www.trustmatta.com
>
>
> ------------------------------------------------------------------------
> ---
> ------------------------------------------------------------------------
> ----
>
>
> ---------------------------------------------------------------------------
> ----------------------------------------------------------------------------
>
>
>
>
>
>
>
>
> ---------------------------------------------------------------------------
> ----------------------------------------------------------------------------
>
>
> .
>
---------------------------------------------------------------------------
----------------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]