Professional Documents
Culture Documents
Information Systems Security LAB: Eng. Christine Zenieh
Information Systems Security LAB: Eng. Christine Zenieh
Viruses
Viruses are self-replication programs that reproduce their own codes by
attaching themselves to other executable codes. They operate without the
permissions or knowledge of the computer users.
Characteristics of Viruses
Following are the characteristics of viruses that infect our computers.
They modify themselves after the infection phase like they source
codes, extensions, new files, etc. so it is harder for an antivirus to
detect them.
They always try to hide themselves in the operating systems in the
following ways:
Start by themselves
Transmit themselves by using non-executable files
Infect other networks or computer
Error while the system is booting in bios stage, like Bios’s battery
cell display, timer error display.
Hardware errors, like beeps RAM burn, HDD, etc.
If a document fails to start normally like a corrupted file, but the
other files can be opened accordingly.
Syrian Private University Information Systems Security LAB
Faculty of Computer &Informatics Engineering
2
Keyboard or mouse doesn’t answer to your commands; you have to
check the plug-ins.
Monitor switching on and off too often, like blinking or vibrating,
this is a hardware fault.
On the other hand, if you have the following signs in your system, you
should check for viruses.
Mac OS X and Linux are both fairly virus-proof due to the way
permissions work and the general architecture of the operating system.
95% of all viruses target Windows users.
A virus is only a virus if it can spread to other users. You will need to
figure out the delivery method before beginning, as it is one of the
fundamentals of the virus's code. Common delivery mechanisms include:
Once your virus has infected a system, what do you want it to do? Effects
can range from nothing, to displaying a message, to deleting files, and
much worse. Be aware that creating and spreading a malicious virus is a
serious crime in most countries.
Research polymorphic code. This will alter the code of your virus
every time it replicates, making it difficult to track with antivirus
programs. Polymorphic code is fairly advanced, and is
implemented differently in every language.
Make sure that you keep your tests contained so that you don't
accidentally release your virus before you are ready. Put the test
machines on an isolated network and see the effects of the virus
spreading.
If you're satisfied with your virus's performance, it's time to release it.
Before you do, however, ask yourself if you're prepared to face any
consequences that may come from releasing a virus into the wild.