Sunday, February 28, 2010

How to bypass antivirus detection

I have already written about RATs in my previous article on Turkojan 4. I have mentioned about antiviruses detecting RATs as hacking softwares and hence, hacker has to use Crypters to avoid antivirus detection for RATs. So, read on to know more on Crypters - hacking software for bypassing antivirus detections.

FUD Crypter

What is Crypter???

As said above, Crypter is hacking program or application used to hide our viruses or RATs from antiviruses so that they are not detected and deleted by antiviruses. Thus, a crypter is a program that allow users to crypt the source code of their program. Generally, antiviruses work by splitting source code of application and then search for certain string within source code.

If AV detects any certain malicious strings, it either stops scan or deletes the file as virus.

What does Crypter do???

Crypter simply assigns hidden values to each individual code within source code. Thus, the source code becomes hidden. Hence, our sent crypted trojans and viruses bypass antivirus detection and our purpose of hacking them is fulfilled without any AV hindrance. Not only does this crypter hide source code, it will unpack the encryption once the program is executed.

What is FUD ???

FUD is acronym for Fully UnDetectable. With increased use of Crypters to bypass antiviruses, AV became more advanced and started including crypter definitions to even detect crypter strings within code. So, use of crypter to hide RATs became more complicated as nowadays, no publicly available crypter is FUD.

So, if you crypt RATs with publicly available crypters, they are bound to be detected by antiviruses. This is because most FUD crypters remain "FUD" for maximum of one or two days after their public release. To obtain FUD crypters, you have to either search for it in hacking forums or make one (which is somewhat tedious.. I am working on this).

How do I get one Crypter???

There are many crypters out on web. But, most of them are not FUD. So, as stated above, either you have to search for one FUD crypter or make one. I have one FUD, but sorry I can't give out. Just check out this Crypter below.

Free Download Crypter here (Pretty old one, just to give you rough idea about Crypters).

In my next coming articles, I will post many FUD cypters and methodology to use them.

Enjoy Crypter download...


