Skip to main content

Duqu written using old school object oriented C

posted onMarch 20, 2012
by l33tdawg

When Kaspersky Labs analysed the Duqu Trojan early last month, they were stumped by a block of code that appeared to be previously unseen programming language. It seems now that the language was not new, but rather an old one. A custom object oriented C framework compiled with MSVC 2008 including options to minimise size and expand only when activated in line.

The choice of programming language suggests that at least some Duqu developers started programming at a time when Assembler was the language of choice and then moved on to C++. Duqu, remote access Trojan created to steal data from industrial control systems, was discovered last November by the Laboratory of Cryptography and Systems Security in Budapest. The malware attracted considerable attention because of similarities to Stuxnet, that disrupted operations at Iran Natanz nuclear facility in 2010. 

Many researchers have speculated that the two pieces of malware may have been written by the same authors, though with slightly different goals in mind - Stuxnet, designed to physically damage industry control equipment while Duqu was designed to mostly steal data in order to attack systems later.

Source

Tags

Industry News Duqu Stuxnet Kaspersky Viruses & Malware

You May Also Like

Recent News

Friday, November 29th

Tuesday, November 19th

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th