Snippet of code from the Voyager Beta worm.
e46bef2356755e2a2cde54e715de3b8fSource code for a worm that spreads using Zboard PHP vulnerabilities. Known as the ZeroBoard worm, it infects Linux, FreeBSD, and Sun.
0d482a78e5fa3223544775c1ddc6dfddTclworm.tcl is a worm coded in TCL/Expect which exploits easily guessed passwords.
b72811bcbbac3894e97672fd8c859029Quick analysis of the Mindjail worm being distributed by the trojan sdbot 0.5b.
2ca02680080ee37930a1466702574257Netbios Worm v1.0 is a simple program which shows how a worm can spread across netbios shares.
0007e7d6cf65a804f54cee8ff38dc0efApache-worm.c is an Internet worm based on the GOBBLES exploit for the Apache chunked encoding vulnerability. Affects FreeBSD 4.5 Apache 1.3.20-24.
bc48df43745876b0c40ef4f9854e67c9Worms.pl is a script which checks apache log files for nimda and code red attempts.
deb9142693256bce6e295eaf0263adbcRemotely detects and cleans binaries infected with the RST worm.
9609d3460acff6c72d9663f745a2ce271i0n.tar.gz is an executable package for the 1ion worm by the ramen crew. Includes several shell scripts and helper binaries.
002160e89fc8386261b60252ea6dd1a5Adorefind checks for the adore worm on the local system.
2734de0b439d2701afbdcfc85ba4dedfInformation on the Adore worm, a worm that we originally called the Red Worm which is similar to the Ramen and Lion worms. Adore scans the Internet checking Linux hosts to determine whether they are vulnerable to any of the following well-known exploits: LPRng, rpc-statd, wu-ftpd and BIND. LPRng is installed by default on Red Hat 7.0 systems. From the reports so far, Adore appears to have started its spread on April 1.
1aaf1442ac408124ef5820ba592841d8
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed