[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]
On Tue, 11 Mar 2014 12:07:43 +0000
Paul Sutton <zleap@xxxxxxxxx> wrote:
Hello Paul,
>If you are going to attempt to run from a shell surely you would be
As has been stated by others, but I'll expand a bit, these attachments
almost always take the form of a zipped, self-extracting Windows .exe
file.
Usually they're marked with the wrong mimetype to fool the OS into doing
what needs to be done to get the darned to run.
>betted off opening it in a text editor and seeing what it is going to
You could, but what gets displayed would be gibberish. Opening with
some sort of Hex editor would get a better result. Even then, you'd
still be presented with something largely incomprehensible.
In a later email, you ask about reverse engineering the .exe. It's by
doing just that that all the anti-virus programmers determine what each
virus, trojan, etc. does. I take my hat off to them.
--
Regards _
/ ) "The blindingly obvious is
/ _)rad never immediately apparent"
The deadbeats and the dispossessed, the seekers of unlikeliness
Street Of Dreams - The Damned
Attachment:
signature.asc
Description: PGP signature
-- The Mailing List for the Devon & Cornwall LUG http://mailman.dclug.org.uk/listinfo/list FAQ: http://www.dcglug.org.uk/listfaq