Flame Malware Authors Hit Self-Destruct

Flame Malware Authors Hit Self-Destruct 260

Posted by samzenpus on Thursday June 07, 2012 @10:12PM from the without-a-trace dept.

angry tapir writes "The creators of the Flame cyber-espionage threat ordered infected computers still under their control to download and execute a component designed to remove all traces of the malware and prevent forensic analysis. Flame has a built-in feature called SUICIDE that can be used to uninstall the malware from infected computers. However, late last week, Flame's creators decided to distribute a different self-removal module to infected computers that connected to servers still under their control."

Flame Malware Authors Hit Self-Destruct

This discussion has been archived. No new comments can be posted.

Search 260 Comments Log In/Create an Account

Comments Filter:

SUICIDE not good enough... (Score:5, Funny)

by reve_etrange ( 2377702 ) writes: on Thursday June 07, 2012 @10:18PM (#40252539)

The article implies that the new module overwrites with random data instead of just deleting files. I guess the original authors didn't think of that one...government inefficiency in action I suppose.

That explains it. (Score:5, Funny)

by Anonymous Coward writes: on Thursday June 07, 2012 @10:20PM (#40252557)

My mother was wondering why her computer suddenly was working so much better.
Thanks dudes!

That's it, I'm officially convinced (Score:5, Funny)

by Voyager529 ( 1363959 ) writes: <.voyager529. .at. .yahoo.com.> on Thursday June 07, 2012 @11:00PM (#40252829)

The people who wrote Flame are the same fine ladies and gentlemen who have brought us CleanMyPC.com. Apparently their accountant is on vacation or something, because removing malware is generally a service that they charge for.

The Other (Score:5, Funny)

by SuperKendall ( 25149 ) writes: on Thursday June 07, 2012 @11:23PM (#40252955)

maybe it self destructs when it can't find a LAN connection?
Works for Diablo 3...

Re:Interesting (Score:3, Funny)

by Anonymous Coward writes: on Friday June 08, 2012 @01:12AM (#40253517)

Second, since when is Pakistan not in the Middle East?
Pakistan has never been in the Middle East.

Re:Interesting (Score:2, Funny)

by Anonymous Coward writes: on Friday June 08, 2012 @04:28AM (#40254287)

If it's written in a .NET language, 20mb is about the size of "Hello World!".

Re:SUICIDE not good enough... (Score:2, Funny)

by Anonymous Coward writes: on Friday June 08, 2012 @10:47AM (#40257157)

That is almost certainly false. The vendor almost certainly has commands to let them retrieve the full data from the drive over the bus.
Potentially this post is almost certainly informative.

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Flame Malware Authors Hit Self-Destruct 260

Flame Malware Authors Hit Self-Destruct More Login

Flame Malware Authors Hit Self-Destruct

SUICIDE not good enough... (Score:5, Funny)

That explains it. (Score:5, Funny)

That's it, I'm officially convinced (Score:5, Funny)

The Other (Score:5, Funny)

Re:Interesting (Score:3, Funny)

Re:Interesting (Score:2, Funny)

Re:SUICIDE not good enough... (Score:2, Funny)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot