mir
I hesitated if i should post this in the programing section under how to program a jpg or in the security section
but i think this is more like a security thread, so remember to always scan your picture files or you could regret it.
The way Windows executes EXE files is stored inside the registry.
The way it executes JPG files is stored there too.
This means that you need to make windows think a JPG file is an EXE file. But we cant do that without hurting the OS's configuration or risk that any future changes made by programs will set JPG back to its default registry value.
What we need to do is create a file that will look like its a JPG (not be the icon, but by the type) and will act like an EXE. but a jpg icon can still be applied also.
example: "file.jpg "
notice the space after the ".jpg". This is no ordianry space, but a special char that for writing it, you need to do as follows:
Get the EXE you want to convert to "jpg".
rename it from "file.exe" to "file.jpg". Now press the rename again, and in the end of the .jpg, press the ALT key (dont let go of it) and on the keypad, type
"0160"
this will look like this: "file.jpg ". you can now rename it to something like "my pic.jpg "
Go to:
Start -> Run -> RegEdit
Right click on the HKEY_CLASSES_ROOT key and New -> Key
Call it ".jpg " (the space represants the ALT+0160)
Inside it, you will find the (Default) string.
Double click on it and write "exefile".
Then right click anywhere but on the Default string and New -> String Value Call it "Content Type". and edit it so it will say "application/x-msdownload".
Right click on the ".jpg " key and New -> Key Call it "PersistentHandler".
Inside it, edit the Default string to
"{098f2470-bae0-11cd-b579-08002b30bfeb}"
Now every EXE file that will have the ".jpg " type, will be executed like a regular EXE! But only on your computer.
Right click on the ".jpg " key and Export.
Call it something like "fix.reg" and tell the victim you're sending the "picture" to that its a fix so that windows will be able to open your pic or use your imagination or hide it inside another trusted program.
I recommand using an EXE joiner to join a real pic to an EXE file so the user wont suspect anything.
samer
It's an interesting approach, but getting your user to open a reg file is harder than getting him to open a custom-made (or packed) .exe file joined with some flash game IMHO.
But I like the long-term aspect of your method,
Good work Mir :)
mir
umm ..i never really worked with flash .. i did some animations with Swishmax. that is all.. the scripts i wrote were very very simple ones..
u mean in macromedia flash. u can type lot of commands that will execute once u play the game or while playing
or u join an exe with the flash that will execute ..like they will be in one big exe
can u explain a bit more samer :D
many ways..for the same end .. that was one!
samer
no need to program the flash game yourself. Get one of these "miniclip" games that you can download in an executable format and bind it with your custom-made exe/bat/whatever.
It won't be " detected " by AV software since it is custom-made. However, beware of common joiner programs, those might add patterns to the code that will make your program detectable.
Padre
yeah loaders/droppers were quite famous. public ones are detected. but again the final product can be "modded" to escape detection.
but it's a nice way mir :P