About: OneHalf   Sponge Permalink

An Entity of Type : dbkwik:resource/uazuHg3wEfJ5Uid5iYR3Jw==, within Data Space : 134.155.108.49:8890 associated with source dataset(s)

It infects the master boot record of the hard disk and executables. It ignores files that their filename contain any of the following strings: SCAN CLEAN FINDVIRU GUARD NOD VSAFE MSAV CHKDSK After the installation of the virus, every time the user boots or reboots the computer, the virus loads and encrypts last 2 unencrypted cylinders. The encryption is done by bitwise XOR operation by a randomly generated key, which the decryption is to perform the same operation with same key again. On access of these encrypted cylinders the virus decrypts them, so that the user might not notice.

AttributesValues
rdf:type
rdfs:label
  • OneHalf
rdfs:comment
  • It infects the master boot record of the hard disk and executables. It ignores files that their filename contain any of the following strings: SCAN CLEAN FINDVIRU GUARD NOD VSAFE MSAV CHKDSK After the installation of the virus, every time the user boots or reboots the computer, the virus loads and encrypts last 2 unencrypted cylinders. The encryption is done by bitwise XOR operation by a randomly generated key, which the decryption is to perform the same operation with same key again. On access of these encrypted cylinders the virus decrypts them, so that the user might not notice.
sameAs
dcterms:subject
dbkwik:malware/pro...iPageUsesTemplate
Date
  • October 1994
Origin
  • Slovakia
Platform
  • MS-DOS
Name
  • OneHalf
Type
  • Virus
pl
  • Assembly
AKA
  • *Slovak Bomber *Freelove *Explosion-II
Creator
  • Vyvojar
abstract
  • It infects the master boot record of the hard disk and executables. It ignores files that their filename contain any of the following strings: SCAN CLEAN FINDVIRU GUARD NOD VSAFE MSAV CHKDSK After the installation of the virus, every time the user boots or reboots the computer, the virus loads and encrypts last 2 unencrypted cylinders. The encryption is done by bitwise XOR operation by a randomly generated key, which the decryption is to perform the same operation with same key again. On access of these encrypted cylinders the virus decrypts them, so that the user might not notice.
Alternative Linked Data Views: ODE     Raw Data in: CXML | CSV | RDF ( N-Triples N3/Turtle JSON XML ) | OData ( Atom JSON ) | Microdata ( JSON HTML) | JSON-LD    About   
This material is Open Knowledge   W3C Semantic Web Technology [RDF Data] Valid XHTML + RDFa
OpenLink Virtuoso version 07.20.3217, on Linux (x86_64-pc-linux-gnu), Standard Edition
Data on this page belongs to its respective rights holders.
Virtuoso Faceted Browser Copyright © 2009-2012 OpenLink Software