検索:
ホーム   »     »   Sony BMG Rootkit Update

Sony BMG Rootkit Update

  • 投稿日:2005年11月4日
  • 脅威カテゴリ:未分類
  • 執筆:ウイルス解析担当者
0

Two days ago we blogged a report about Sony installing a rootkit with the purpose of protecting its digital property from piracy.

A concern was raised since this rootkit can be used by a malware to hide itself from the process. Now that concern has just been confirmed to be a real threat…

According to the analysis made by a Sysinternal Researcher, the concern lies in the device driver “aries.sys”, which was confirmed to patch several functions via the system call table and that its cloaking code hides any file, directory, Registry key or process whose name begins with “$sys$” even if its not part of the Sony software.

A malware author can now just drop the file aries.sys load it in the system and add “$sys$” to the malwares filename and presto! instant rootkit malware.

Also we just received a report that this is now being used by World of Warcraft Hackers to hide their cheat programs from the warden (a controversial anti-cheating program from Blizzard Entertainment).

No related posts.



  • 個人のお客さま向けオンラインショップ
  • |
  • 法人のお客さま向け直営ストア
  • |
  • 販売パートナー検索
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • 電子公告
  • ご利用条件
  • プライバシーポリシー
  • Copyright © 2021 Trend Micro Incorporated. All rights reserved.