Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!


TUCoPS :: Hacking Techniques :: trojpgpd.txt

Creating Trojan PGPDisks




::--==--==--==--==--==--==--==--==--==--==--==--==--==--==--==--==--==--==--::
::                .ooO Creating Trojan PGPDisks by wyze1 Ooo.               ::
::--==--==--==--==--==--==--==--==--==--==--==--==--==--==--==--==--==--==--::
::                                                                          ::
:: Well, Network Associates have gone out and added PGP to their list of    ::
:: products to ruin and commercialize and they made their debut with PGP 6  ::
:: for Windows some time ago - the first PGP made by NAI.                   ::
::                                                                          ::
:: A friends PC of mine had the new PGP on it (PGP 6.0.2i) and I was very   ::
:: impressed with the PGPDisk utility distributed with it... until I found  ::
:: out just how evil it was. Basically, PGPDisk creates a filesystem within ::
:: a filesystem within a file on your HardDrive, then encrypts it with a    ::
:: pretty damn secure algorythym. When you open the file, it decrypts it    ::
:: with the password specified and if it was right, makes the PGPDisk a     ::
:: Virtual Drive on E: or F: or wherever you want to put it.                ::
::                                                                          ::
:: Sounds simple enough, so where's the problem? The problem is not in the  ::
:: creation or encryption of the volumes, it's in the driver that they use  ::
:: to create the virtual drive. It looks like what they're using is a       ::
:: ripped version of Microsoft's own CD drivers, and what do we know about  ::
:: CDs under Windows? They Autorun! Stupid! Stupid! Stupid! Stupid!         ::
::                                                                          ::
:: So, we just create a PGPDisk with some loser's public key, containing    ::
:: some or other fake information which we want to pretend to be sending    ::
:: along with Evil.Exe, which lets say is a backdoor of some sort that will ::
:: delete itself and Autorun.inf as soon as it is run on the target machine.::
:: We then put an Autorun.inf file on the PGPDisk that looks something like ::
::                                                                          ::
:: [autorun]                                                                ::
:: OPEN=EVIL.EXE                                                            ::
::                                                                          ::
:: And there we have it - A Nice Trojan PGPDisk just waiting for your local ::
:: Windoze kidlet. Have fun with this one - And be good. ;)                 ::
::                                                                          ::
::                               --=====--                                  ::
::                      * KewtAngel was kicked by wyze1                     ::
::              (Why are all chiqz that come to #hack so DUMB?!)            ::
::                               --=====--                                  ::
::                                                                          ::
::--==--==--==--==--==--==--==--==--==--==--==--==--==--==--==--==--==--==--::



TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH