DSME-based Viruse
Details
DSME-based Viruses
DSME (Dark Slayer’s Mutating Engine) is a polymorphic generator like the MtE or TPE generators. It creates the decryption routine and encrypts the virus body, then the virus saves this part of code in file on infection. This generator contains the internal string: “DSME v1.0″.
DSME.Apex
It’s a not dangerous not memory resident parasitic virus. It searches for .COM-files and writes itself to their ends. In September it manifests itself with sound and video effects. Tt displays the text string:
My name is APEX v1.0_ Congratulations! PS:I wouldn’t hurt your data.Be relax!.Ha
DSME.Connie
These are harmless memory resident parasitic polymorphic viruses. They are not linked with DSME generator but they contain DSME related polymorphic code. They look like “rough copies” of DSME generator.
These viruses hook INT 21h and write themselves at the end of COM-files are accessed. They contain the internal text strings “C:\COMMAND.COM” and:
“DSME.Connie.1746″: This is
Written by Dark Slayer in Keelung TAIWAN
“DSME.Connie.2708″: This is Connie v2.0
Written by Dark Slayer in Keelung, Taiwan
DSME.DemoVirus
It’s a harmless not memory resident parasitic DSME-based virus. It searches for .COM-files and writes itself to their ends. It contains the internal text:
This is a DemoVirus for DSME v1.0, Written by Dark Slayer in Keelung,Taiwan
DSME.Teacher
It’s a harmless memory resident parasitic DSME-based virus. It hooks INT 21h and writes itself to the end of COM- and EXE-files that are executed. It contains the internal text string:
Teacher virus ( A demo virus for DSME to all teacher )
Related Posts