Lenin Expropriator Bootvirus - Amiga Virus Encyclopedia

VIRUS HELP TEAM



     ----------------------------    
     Amiga Virus Encyclopedia    
     Lenin Expropriator Bootvirus 
     ----------------------------

    
     Name         : Lenin Expropriator

     Type         : Bootblock
     
     Size         : 1024 bytes

     Original     : Lamer Exterminator 2

     Symptoms     : No Symptoms

     Discovered   : 7 february 2021

     Way to infect: Boot infection

     Rating       : Dangerous

     Kickstarts   : 1.2
                    1.3
                    2.0
                    3.0

     Damage       : Overwrites boot + Damages Blocks

     Removal      : Install boot

     Visible text : The LENIN Expropriator !!! (In decoded text)

     Comments     : The Lenin Expropriator Virus is a  very dangerous  virus.  It patches
                    the  BeginIO()-Vector  from  the  trackdisk.device  to  infect  other
                    disks. The virus uses the KICK-Vectors + SumKickData to stay resident
                    No salvage possible. The whole Bootblock is crypted.
                    The  checksum  of the  bootblock changes  with each mutation, so that
                    means that there could be a lot of mutations out there. Take care.                    
     
     Info         : It's particularity  is that the virus  has been modified enough to be 
                    undetectable by VirusZ and VT-Schutz.

                    Read the test from Virus Test Center Hamburg of Lamer Exterminator 2
     
     Test made by : Jan Andersen, Virus Help Team.

     Credit       : CrashDisk for sending the virus to Virus Help Team.
     
     
     Ascii of Lenin Expropriator bootblock virus (Decoded):
     

     


Virum Help Team
Denmark & Canada
Copyright © All rights reserved
www.vht.dk