Slashdot Mirror

← Back to Stories (view on slashdot.org)

Custom Trojan Creation Tool Sold Online

Posted by Zonk on from the haxx0ring-made-e-z dept.

Finch writes "Net Security.org is reporting on the surprisingly sophisticated 'virus in a can' software called Pinch. Pinch is a tool sold on several online forums and designed to create Trojans. It allows attackers to specify the data that Trojans steal. One of the interface tabs, PWD, allows malicious users to select the type of password to be stolen by the Trojan: from email passwords to passwords kept by the system tools. It is possible to order the Trojan to encrypt this data when sending it, so that nobody else can read it. 'Pinch also lets users carry out other actions: turn infected computers into zombie computers, pack Trojans to make detection more difficult, and kill certain system processes, particularly those of security solutions.'"

11 of 121 comments (clear)

  1. That sounds like fun by Anonymous+Crowhead · · Score: 5, Funny

    How much is it and where can I buy it? For, uh, research purposes.

  2. Nothing New by KermodeBear · · Score: 4, Informative

    There is nothing new here.

    I remember back in my script kiddie days I was able to download programs that would put together a trojan or virus together from the various options the user selected. Press a button and viola! It generated an executable. This was ten years ago.

    What's so new here? That fact that someone is commercializing it?

    Well, good. If you have to shell out cash at least it will keep my 16 year old self from downloading it and causing annoyances.

    --
    Love sees no species.
    1. Re:Nothing New by Anonymous Coward · · Score: 4, Funny

      Yeah, Sub7 was great. I thought the most entertaining feature was being able to quickly and easily set the user's desktop wallpaper image. It didn't take long to sniff just enough of the Sub7 protocol to be able to develop a tool that would a) scan huge swath of netspace for Sub7 b) login c) download a .jpg d) set wallpaper. A lot of people back in the late 90s woke up to find that overnight, their wallpaper had changed to a photo involving a cucumber and a very hairy receptacle.

      Being able to pop custom modals was pretty fun, too. "ERROR: Insert penis into CD-ROM drive to continue operation! [OK]," followed by the CD tray immediately ejecting itself, probably freaked a few people out.

      Oh, to be young again, those were the days...!

  3. After all those by rrohbeck · · Score: 4, Funny

    "1NCRE@SE Y0UR PEN1S S1ZE 25% 1N 2 WEEKS!" programs I definitely need custom Trojans.

    --
    thegodmovie.com - watch it
  4. well you're obviously not the intended market by JeanBaptiste · · Score: 5, Funny

    anyone who would use one of these would likely download a pirated version.

    1. Re:well you're obviously not the intended market by morari · · Score: 5, Funny

      Which is, itself, a Trojan...

      --
      "He who can destroy a thing, controls a thing." --Paul Atreides, Dune
    2. Re:well you're obviously not the intended market by X0563511 · · Score: 5, Funny

      Please stand by as space-time folds in upon itself.

      --
      For large sets, this will be our guide even unto death, for the LORD will work for each type of data it is applied to...
  5. Re:nothing special by KillerCow · · Score: 4, Informative

    Or the venerable Virus Creation Laboratory, ala '92.

  6. Re:Scary stuff to be sure by realmolo · · Score: 4, Insightful

    Eh. Trojans/rootkits/viruses built form these "kits" tend to all be very similar. Essentially, if you defend against one, you're defended against all the others.

    Never mind the fact that it's a fucking KIT. If YOU can download it, so can the anti-virus people in order to figure out how to detect viruses made with it.

    The interesting thing about modern viruses/trojans/whatever is that very few of them are really *viruses* anymore. They rely almost completely on simply getting a user to manually run (or at least give permission to the system to run) an obfuscated executable. It's sad that the technique is so successful.

  7. Re:Torrent? by Havenwar · · Score: 4, Interesting

    Oh, actually a search for "pinch" on emule turns up quite a plethora of results... although once you've sorted out the porn and downloaded a few exe files (yes I know, for most geeks this is the exact reverse of the normal process), for some odd reason antivirus warnings start to pop up... apparently two out of three pinch downloads was infected with "Win32/PSW.LdPinch.P4 trojan" and the third with some other crap that I forgot to write down.

    You can almost see the scriptkiddies sitting there with their brand new trojan going... "hmm, now if only I had some program to trick people into downloading... something I could merge my trojan with to start off my botfarm. Something I could put on fasttrack, and maybe emule... something idiots would download and run even if their antivirus goes off. Hey wait a minute, I'm an idiot and I just ran pinch even though 'norton' told me it was bad for me!"

  8. Re:Torrent? by PCM2 · · Score: 4, Insightful

    apparently two out of three pinch downloads was infected with "Win32/PSW.LdPinch.P4 trojan"

    Did you stop to think that maybe the construction set was identified as a Trojan because it ... you know ... contained the code for a Trojan? As in ... if it tripped your antivirus then you probably had the right one.

    --
    Breakfast served all day!