Fighting Spyware, Malware and Adware one File at a Time.
Navigation Links

Database of Spyware Home

About the Project

View the Database

Forums

Database of Spyware Site Map

Terms of Use

CodeCrypt 0.15b

Overview

Vendor Description

 From the doc: 'encrypts code sections of a PE-File and adds decryption code, to leave the file in (at least in most cases ;) an executable state. It's just another lame PE-Crypter. currently implemented features: - anti-debugging code. - anti-tracer code (procdump etc). - encryption of the decrypter. - random number encryption system. - multiple checksum encryption. - bogus opcodes, making it harder to reverse the decrypter. - anti procdump-dump-trick - anti-frogsice code'

Category

 Binder: A tool that combines two or more files into a single file, usually for the purpose of hiding one of them. A binder compiles the list of files that you select into one host file, which you can rename. A host file is a simple custom compiled program that will decompress and launch the source programs. When you start the host, the embedded files in it are automatically decompressed and launched. When a trojan is bound with Notepad, for instance, the result will appear to be Notepad, and appear to run like Notepad, but the Trojan will also be run.

 

Origins

 

Author

 Defiler

Date of Origin

 January, 2000
 

Detection and Removal

Manual Removal

 Follow these steps to remove CodeCrypt 0.15b from your machine. Begin by backing up your registry and your system, and/or setting a Restore Point, to prevent trouble if you make a mistake.

 Stop Running Processes:

Kill these running processes with Task Manager:



Remove Files:

Remove these files (if present) with Windows Explorer:



 
CockBlocker  CodaE-Bomb2.0  CodeBlue  CodeBreakerVirusWritingTutorial  CodeBuster  CodeCrypt0.15b  CodeFusionWizard3.0  CodeInjectionDownloader1.00  CodeMixer  CodeProg1.01  
 
Site Map 2006 © Copyright DatabaseofSpyware.com. All rights reserved. Terms of Use
Another Proud Thor Schrock Development