In World of crypting and Encoding & Fud'ing You need to learn new things everyday
Let me give you an Basic Information
There are mainly two type of FUD :-
1) FUD scantime :- Bypass AV while Scanning
2) FUD Runtime :- Bypass AV file at Time of Execution
In Todays Demo there are three Steps
Lets Begin ;)
1. Making an Windows Platform Keylogger/RAT/ Botnet or Malware :P
Tools like Darkcommet, Prorat , Istealer, cybergate etc will help you.. This tutorial is mainly for FUDing so lets skip this part :))
2. Crypt it with some good free crypter like : Amuse Crypter
Report Date: 07.07.2012 07:07:31
Link To Scan: http://elementscanner.com//?RE=48eba8d1a81a6b19250781fa26af4215
File Name: vv.Exe
File Size: 5574144 bytes
MD5 Hash: 239da3678465ef76efe70a7beb1a4743
SHA1 Hash: e41d94cf7d83f83073ee8f319cb99634c8dcd85b
Status: Infected
Total Results: 1/35
AVG Free - Clean
ArcaVir - Clean
Avast 5 - Clean
AntiVir (Avira) - TR/Dropper.Gen
BitDefender - Clean
VirusBuster Internet Security - Clean
Clam Antivirus - Clean
COMODO Internet Security - Clean
Dr.Web - Clean
eTrust-Vet - Clean
F-PROT Antivirus - Clean
F-Secure Internet Security - Clean
G Data - Clean
IKARUS Security - Clean
Kaspersky Antivirus - Clean
McAfee - Clean
MS Security Essentials - Clean
ESET NOD32 - Clean
Norman - Clean
Norton Antivirus - Clean
Panda Security - Clean
A-Squared - Clean
Quick Heal Antivirus - Clean
Rising Antivirus - Clean
Solo Antivirus - Clean
Sophos - Clean
Trend Micro Internet Security - Clean
VBA32 Antivirus - Clean
Vexira Antivirus - Clean
Zoner AntiVirus - Clean
Ad-Aware - Clean
BullGuard - Clean
Immunet Antivirus - Clean
K7 Ultimate - Clean
VIPRE - Clean
Link To Scan: http://elementscanner.com//?RE=48eba8d1a81a6b19250781fa26af4215
File Name: vv.Exe
File Size: 5574144 bytes
MD5 Hash: 239da3678465ef76efe70a7beb1a4743
SHA1 Hash: e41d94cf7d83f83073ee8f319cb99634c8dcd85b
Status: Infected
Total Results: 1/35
AVG Free - Clean
ArcaVir - Clean
Avast 5 - Clean
AntiVir (Avira) - TR/Dropper.Gen
BitDefender - Clean
VirusBuster Internet Security - Clean
Clam Antivirus - Clean
COMODO Internet Security - Clean
Dr.Web - Clean
eTrust-Vet - Clean
F-PROT Antivirus - Clean
F-Secure Internet Security - Clean
G Data - Clean
IKARUS Security - Clean
Kaspersky Antivirus - Clean
McAfee - Clean
MS Security Essentials - Clean
ESET NOD32 - Clean
Norman - Clean
Norton Antivirus - Clean
Panda Security - Clean
A-Squared - Clean
Quick Heal Antivirus - Clean
Rising Antivirus - Clean
Solo Antivirus - Clean
Sophos - Clean
Trend Micro Internet Security - Clean
VBA32 Antivirus - Clean
Vexira Antivirus - Clean
Zoner AntiVirus - Clean
Ad-Aware - Clean
BullGuard - Clean
Immunet Antivirus - Clean
K7 Ultimate - Clean
VIPRE - Clean
Let me give you an Basic Information
There are mainly two type of FUD :-
1) FUD scantime :- Bypass AV while Scanning
2) FUD Runtime :- Bypass AV file at Time of Execution
In Todays Demo there are three Steps
Lets Begin ;)
1. Making an Windows Platform Keylogger/RAT/ Botnet or Malware :P
Tools like Darkcommet, Prorat , Istealer, cybergate etc will help you.. This tutorial is mainly for FUDing so lets skip this part :))
2. Crypt it with some good free crypter like : Amuse Crypter
Sometime ,sandboxie restrict it.You may run without sandboxie,the best way
(make sure you have system restore such as deepfreeze)
By here now, Your Malware is simply crypted, it wont be FUD so as last step will do the needful.
3. Refud by some Good Re-FUDing tool : CliSecure
:Video Tutorial:
AFTER REFUD: Results
Link To Scan: http://elementscanner.com//?RE=48eba8d1a81a6b19250781fa26af4215
File Name: vv.Exe
File Size: 5574144 bytes
MD5 Hash: 239da3678465ef76efe70a7beb1a4743
SHA1 Hash: e41d94cf7d83f83073ee8f319cb99634c8dcd85b
Status: Infected
Total Results: 1/35
AVG Free - Clean
ArcaVir - Clean
Avast 5 - Clean
AntiVir (Avira) - TR/Dropper.Gen
BitDefender - Clean
VirusBuster Internet Security - Clean
Clam Antivirus - Clean
COMODO Internet Security - Clean
Dr.Web - Clean
eTrust-Vet - Clean
F-PROT Antivirus - Clean
F-Secure Internet Security - Clean
G Data - Clean
IKARUS Security - Clean
Kaspersky Antivirus - Clean
McAfee - Clean
MS Security Essentials - Clean
ESET NOD32 - Clean
Norman - Clean
Norton Antivirus - Clean
Panda Security - Clean
A-Squared - Clean
Quick Heal Antivirus - Clean
Rising Antivirus - Clean
Solo Antivirus - Clean
Sophos - Clean
Trend Micro Internet Security - Clean
VBA32 Antivirus - Clean
Vexira Antivirus - Clean
Zoner AntiVirus - Clean
Ad-Aware - Clean
BullGuard - Clean
Immunet Antivirus - Clean
K7 Ultimate - Clean
VIPRE - Clean
AFTER REFUD
Report Date: 07.07.2012 07:07:31Link To Scan: http://elementscanner.com//?RE=48eba8d1a81a6b19250781fa26af4215
File Name: vv.Exe
File Size: 5574144 bytes
MD5 Hash: 239da3678465ef76efe70a7beb1a4743
SHA1 Hash: e41d94cf7d83f83073ee8f319cb99634c8dcd85b
Status: Infected
Total Results: 1/35
AVG Free - Clean
ArcaVir - Clean
Avast 5 - Clean
AntiVir (Avira) - TR/Dropper.Gen
BitDefender - Clean
VirusBuster Internet Security - Clean
Clam Antivirus - Clean
COMODO Internet Security - Clean
Dr.Web - Clean
eTrust-Vet - Clean
F-PROT Antivirus - Clean
F-Secure Internet Security - Clean
G Data - Clean
IKARUS Security - Clean
Kaspersky Antivirus - Clean
McAfee - Clean
MS Security Essentials - Clean
ESET NOD32 - Clean
Norman - Clean
Norton Antivirus - Clean
Panda Security - Clean
A-Squared - Clean
Quick Heal Antivirus - Clean
Rising Antivirus - Clean
Solo Antivirus - Clean
Sophos - Clean
Trend Micro Internet Security - Clean
VBA32 Antivirus - Clean
Vexira Antivirus - Clean
Zoner AntiVirus - Clean
Ad-Aware - Clean
BullGuard - Clean
Immunet Antivirus - Clean
K7 Ultimate - Clean
VIPRE - Clean
hi
ReplyDeletepassword clisecuer?