Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie

encrypted rar file?

  • 07-04-2011 9:13am
    #1
    Registered Users Posts: 2,342 ✭✭✭


    Anybody ever heard of a torrent that when finished, is an encrypted RAR file, and there's a readme that says to go to this dodgy sounding website -a-string-of-numbers-and-letters.whackyvidz.com ??

    In fairness i actually opened up the link on a computer i didn't care about, and it opened to a site that had a small SN on the bottom. Haven't tried putting that SN into the encrypted RAR file yet.

    But, has anybody ever heard of such a thing?
    The torrent is supposed to be a movie but this has warning signs all over it.

    But why bother with all this carry-on if it's just a virus?


Comments

  • Registered Users Posts: 203 ✭✭clacks


    Avoid like the plague.


  • Closed Accounts Posts: 6,706 ✭✭✭Voodu Child


    Password protected RARs are very common. And having a text file with a torrent or download that asks you to visit a particular URL is also very common.

    That doesnt mean this particular example is safe or unsafe.


  • Closed Accounts Posts: 13,874 ✭✭✭✭PogMoThoin


    You visited the site didn't you?

    Better get some scans running. download this, install it, update it and run the full scan just to be safe
    http://www.malwarebytes.org/


  • Registered Users Posts: 2,342 ✭✭✭BluePlanet


    I suppose i'm wondering because, if the goal was to circulate a virus, why bother having people go to the site?
    If the virus is in the RAR, wouldn't it be easier (and probably more successful) to just give them the pw in the readme?

    I'm presuming the RAR is encrypted simply for detection avoidance.


  • Closed Accounts Posts: 6,706 ✭✭✭Voodu Child


    I'll say it again: RARing a download and PW protecting it is common practice to break it into smaller pieces, give a level of redundancy and keep the contents from prying eyes.

    Sending people to a site to get a PW is common practice to generate page views, link revenue, ad revenue etc.

    This kind of thing doesnt tell you whether you are dealing with malware or not.


  • Advertisement
  • Posts: 0 [Deleted User]


    Oldest trick in the book. I remember this back in 1999/2000, sending you on a hunt to get a password. "go to site x, sign up, the password is the fifth word on the confirmation page." That method was often used for private FTP server passwords too.


  • Banned (with Prison Access) Posts: 1,007 ✭✭✭knird evol


    if you google the name of the file > "titanic.rar" & "password" ....bit of a chance


  • Registered Users Posts: 7,008 ✭✭✭uch


    Use the name of whoever seeded it for password

    21/25



Advertisement