Virdem

Virdem was the first file virus for MS-DOS.[1] It was written by Ralf Burger in 1986 as a demonstration program for the Chaos Computer Club conference. The virus spread by attaching itself to files with the .COM file extension. It is one of the oldest MS-DOS viruses.[2]

In December 1986, Burger distributed the virus at the Chaos Computer Club conference in Hamburg, Germany.[3] The virus could copy itself and attach that copy to any .COM files. Virdem was fairly harmless as it announces its presence clearly.[failed verification][4]

Infection and symptoms

Virdem overwrites the host with its own code and saves the original program at the very end. It was a direct-action virus and did not spread fast.[failed verification] It infected only files that had a COM extension.[5] When an infected file is run, the next uninfected program becomes infected.

When infected, small COM files, less than 11k, grow by 2559 bytes and larger files grow by 1336 bytes. Infected programs ask to guess the user a number between 0 and n such that the number matches the generation number of the virus plus one. A correct guess allows that program to run. Otherwise, it exits.

Technical details

It doesn't intercept interrupt 24h so a write-protected disk gives an "Abort, Retry, Ignore" message. Read-only files are set to read/write, infected and then not set back to read-only. The virus had two NOP instructions at the beginning of the file.[6]

References

  1. ^ Bhargav, Abhay (2010-09-14). Secure Java: For Web Application Development. CRC Press. ISBN 978-1-4398-2356-9.
  2. ^ Skoudis, Ed; Zeltser, Lenny (2004). Malware: Fighting Malicious Code. Prentice Hall Professional. ISBN 978-0-13-101405-3.
  3. ^ Salomon, David (2010-08-05). Elements of Computer Security. Springer Science & Business Media. ISBN 978-0-85729-006-9.
  4. ^ Danesh, Arman; Lau, Felix; Mehrassa, Ali (2002). Safe and Secure: Secure Your Home Network, and Protect Your Privacy Online. Sams Publishing. ISBN 978-0-672-32243-3.
  5. ^ Szor, Peter (2005-02-03). The Art of Computer Virus Research and Defense. Pearson Education. ISBN 978-0-672-33390-3.
  6. ^ Solomon, Alan (2012-12-06). PC Viruses: Detection, Analysis and Cure. Springer Science & Business Media. ISBN 978-1-4471-1031-6.

Content Disclaimer

Informasi ini disarikan dari Wikipedia dan disajikan kembali untuk tujuan edukasi. Konten tersedia di bawah lisensi CC BY-SA 3.0. Kami tidak bertanggung jawab atas ketidakakuratan data yang bersumber dari kontribusi publik tersebut.

  1. The information displayed on this website is sourced in part or in whole from Wikipedia and has been adapted for the purpose of restating it. We strive to provide accurate and relevant information, however:
  2. There is no guarantee of absolute accuracy. Wikipedia is an open, collaborative project that can be edited by anyone, so information is subject to change.
  3. It is not intended to constitute professional advice. The content displayed is for informational and educational purposes only. For important decisions (e.g., medical, legal, or financial), please consult a professional.
  4. Content copyright. Wikipedia is licensed under the Creative Commons Attribution-ShareAlike License (CC BY-SA). This means that content may be reused with appropriate attribution and shared under a similar license.
  5. Responsible use. Any risk arising from the use of information from this website is entirely the responsibility of the user.