Slashdot Mirror

← Back to Stories (view on slashdot.org)

Flame Malware Authors Hit Self-Destruct

Posted by samzenpus on from the without-a-trace dept.

angry tapir writes "The creators of the Flame cyber-espionage threat ordered infected computers still under their control to download and execute a component designed to remove all traces of the malware and prevent forensic analysis. Flame has a built-in feature called SUICIDE that can be used to uninstall the malware from infected computers. However, late last week, Flame's creators decided to distribute a different self-removal module to infected computers that connected to servers still under their control."

7 of 260 comments (clear)

  1. SUICIDE not good enough... by reve_etrange · · Score: 5, Funny

    The article implies that the new module overwrites with random data instead of just deleting files. I guess the original authors didn't think of that one...government inefficiency in action I suppose.

    --
    .: Semper Absurda :.
    1. Re:SUICIDE not good enough... by Anonymous Coward · · Score: 2, Funny

      That is almost certainly false. The vendor almost certainly has commands to let them retrieve the full data from the drive over the bus.

      Potentially this post is almost certainly informative.

  2. That explains it. by Anonymous Coward · · Score: 5, Funny

    My mother was wondering why her computer suddenly was working so much better.

    Thanks dudes!

  3. That's it, I'm officially convinced by Voyager529 · · Score: 4, Funny

    The people who wrote Flame are the same fine ladies and gentlemen who have brought us CleanMyPC.com. Apparently their accountant is on vacation or something, because removing malware is generally a service that they charge for.

  4. The Other by SuperKendall · · Score: 5, Funny

    maybe it self destructs when it can't find a LAN connection?

    Works for Diablo 3...

    --
    "There is more worth loving than we have strength to love." - Brian Jay Stanley
  5. Re:Interesting by Anonymous Coward · · Score: 3, Funny

    Second, since when is Pakistan not in the Middle East?

    Pakistan has never been in the Middle East.

  6. Re:Interesting by Anonymous Coward · · Score: 2, Funny

    If it's written in a .NET language, 20mb is about the size of "Hello World!".