Bound file Detector

joey · New to the board Joined: 22 Nov 2005 Posts: 3

hello dear,
i often use binder to bind my trojan file with some picture and send binded file to the victim....but there is a tool out now a days... Bound File detector in which if u select bounded file it detects if it has files binded or not which is dangerous for me... i want to get rid of it...i dont want this bound file detctor to be able to detect and show these extra headers... how can i hide these headers???... below is a example of this tool checking one binded file....

- Analyzing file...
- Checking for extra data...
- Checking for parasite (injected) data...

-> 23193h extra bytes found, starting at offset A61h.

That means that:
The file contains 143763 bytes of extra data.
Stub size is approximately 2 KB.

You may now attempt to clean the file.

Soul12 · Occasional Poster Joined: 17 Apr 2005 Posts: 39

i guess it would make sense to pack the file ? thus hiden the orginal headers

bengunn · Regular Joined: 15 Apr 2005 Posts: 118

Knight · Regular Joined: 21 Aug 2005 Posts: 122

Yeah, I think we shouldn't help for such people. Although RCE might be bit evil, reversers meens no harm to others. I'm not against sharing knowledge, but i think it's stupid to help developing something from what in future you (and a lot of other ppl too) may suffer.

detten · Site Admin Joined: 05 Feb 2005 Posts: 317

or maybe we should help such people to prove the weakness of windows OS Wink

Waiting till someone tells me the same is possible on *nix flavors Cool

bengunn · Regular Joined: 15 Apr 2005 Posts: 118

detten · Site Admin Joined: 05 Feb 2005 Posts: 317

I sure wouldn't mind him trying...it would be a good audit for my configuration.
But I get your point. And besides attaching exe's to other content is quite inspirationless Confused