8/16/2019 Indaboxa.worm
1/3
Ini dia salah satu virus baru yang
nyerang indonesia...
(BACA: Hasil analisa berikut tidak
sepenuhnya benar, mungkin saja sayasalah menganalisa!
Hasil AnalisaNama Malware : Indaboxa.Worm "orphost#, $rojan Horse %ymante,
'orm.'in).*B.a&& +aspersky ab#, -e "alare.d "&A/ee#
Bahaya 0esiko : Rendah
1kuran : 2,344 bytes
5engirim *irus : Unknown (maaf saya lupa)
I&on : /older.
C0C) : !"#A$%" (berdasarkan /ile yang dikirim
"67 : %&%"'A$*+'%&,$$++&A**'"- (berdasarkan
/ile yang dikirim6ibuat dengan : *isual Basi&
okasi 5roje&t *irus:8C:9test9indos.vbp8
+eterangan 5roje&t:
App-ame 8kyubi8 anguage6 8;8
anguage6) 88
5roje&t$itle 8indos8
0egistry yang dimainkan oleh virus ini adalah:
H+=?@CA@"ACHI-=9%$'A0=9"i&roso/t9'indos9Current*ersion90un#
').ormalin.Beta 8%ystem95o&ong.eDe8
$eak %ystem 8%ystem9Eenderoo.eDe8
ptimiFe 'indos 8%ystem9+untilanak.eDe8
%ystem) 8%ystem9drivers9&srss.eDe8
H+=?@CA@"ACHI-=9%$'A0=9"i&roso/t9'indos -$9Current*ersion9Image
ile =De&ution ptions9kspool.eDe#
6ebugger 8&md.eDe G& del8
H+=?@CA@"ACHI-=9%$'A0=9"i&roso/t9'indos -$9Current*ersion9Image
ile =De&ution ptions9kspoold.eDe#
6ebugger 8&md.eDe G& del8
8/16/2019 Indaboxa.worm
2/3
H+=?@CA@"ACHI-=9%$'A0=9"i&roso/t9'indos -$9Current*ersion9Imageile =De&ution ptions9mm&.eDe#
6ebugger 8&al&8
H+=?@CA@"ACHI-=9%$'A0=9"i&roso/t9'indos -$9Current*ersion9Image
ile =De&ution ptions9ms&on/ig.eDe#
6ebugger 8&al&.eDe8H+=?@CA@"ACHI-=9%$'A0=95oli&ies9"i&roso/t9'indos9Installer#
imit%ystem0estoreChe&kpointing D>
6isable"%I D>
H+=?@CA@"ACHI-=9%$'A0=95oli&ies9"i&roso/t9'indos -$9%ystem0estore#
6isableCon/ig D>
6isable%0 D>
H+=?@C100=-$@1%=09%o/tare9"i&roso/t9Internet =Dplorer9"ain#
'indo $itle 8?our &omputer has been idiot8
H+=?@C100=-$@1%=09%o/tare9"i&roso/t9'indos9Current*ersion95oli&ies9=Dplore
r#-oind D>
-oolderptions D>
-oC6Burning D>
H+=?@C100=-$@1%=09%o/tare9"i&roso/t9'indos9Current*ersion95oli&ies9%ystem#
6isable$ask"gr D>
6isable0egistry$ools D>
H+=?@C100=-$@1%=09%o/tare95oli&ies9"i&roso/t9'indos9%ystem#
6isableC"6 D>
H+=?@CA@"ACHI-=9%$'A0=9"i&roso/t9'indos-$9Current*ersion9'inlogon#
egal-oti&eCaption 8'A0-I-E8
egal-oti&e$eDt 8+=%AAHA- B1+A- 5A6A +"51$=0 A-6A "=AI-+A-
5A6A 6I0I A-6A8
"enghapus registry berikut:
H+=?@CA@"ACHI-=9%?%$="9Control%et>9Control9%a/eBoot9"inimal9 364=J42K=)7K>>C=KBC>KL)B=>>LM#
(6e/ault 86isk6rive8
H+=?@CA@"ACHI-=9%?%$="9Control%et>9Control9%a/eBoot9"inimal9
364=J26K=)7K>>C=KBC>KL)B=>>LM#(6e/ault 8%ystem8
H+=?@CA@"ACHI-=9%?%$="9Control%et>9Control9%a/eBoot9"inimal9
2>A)2C66KL>)AK>>6KB=C2KL)B=)J)M#
(6e/ault 8*olume8
H+=?@CA@"ACHI-=9%?%$="9Control%et>9Control9%a/eBoot9"inimal9 237A>2AK236K>>6KB4=KACJ726AM#
(6e/ault 8Human Inter/a&e 6evi&es8
8/16/2019 Indaboxa.worm
3/3
H+=?@CA@"ACHI-=9%?%$="9CurrentControl%et9Control9%a/eBoot9"inimal9 364=J42K=)7K>>C=KBC>KL)B=>>LM#
(6e/ault 86isk6rive8
H+=?@CA@"ACHI-=9%?%$="9CurrentControl%et9Control9%a/eBoot9"inimal9
364=J26K=)7K>>C=KBC>KL)B=>>LM#
(6e/ault 8%ystem8H+=?@CA@"ACHI-=9%?%$="9CurrentControl%et9Control9%a/eBoot9"inimal9 2>A)2C66KL>)AK>>6KB=C2KL)B=)J)M#
(6e/ault 8*olume8
H+=?@CA@"ACHI-=9%?%$="9CurrentControl%et9Control9%a/eBoot9"inimal9
237A>2AK236K>>6KB4=KACJ726AM#
(6e/ault 8Human Inter/a&e 6evi&es8
%ignature orm ini sudah saya masukkan ke dalam database "orphost yang ke >J.
Nadi tidak perlu khaatir.
Butuh database morphost keK>JO %ilakan donload di: http:GGmorphi&.3shared.&om
Bila ada virus lagi yang tdk terdeteksi oleh "orphost silakan upload saja ke:
http:GGmorphi&.3shared.&om
By: "orphi&
http:GG./riendster.&omGmorphi& (/riendster
http:GG.morphostlab.&o.nr (my blog
karta@morphi&Pyahoo.&o.id (my email
http:GGmorphi&.3shared.&om (donload "orphost and "orphost database here!and donQt /orget to join ith Morphos/ab (riendsterEroup
thanks to:
K"urtala
K0union
Ksemua virologers yang ada di /orum virologiR
http://morphic.4shared.com/http://morphic.4shared.com/http://www.friendster.com/morphichttp://www.morphostlab.co.nr/mailto:[email protected]://morphic.4shared.com/http://morphic.4shared.com/http://morphic.4shared.com/http://www.friendster.com/morphichttp://www.morphostlab.co.nr/mailto:[email protected]://morphic.4shared.com/Recommended