Fravia's Messageboard ~ Moderated
Re: Re: BE VERY CAREFUL
Wednesday, 10-Mar-99 08:38:09
> It infects any file that is opened. Version 1.2 attacks on
> (I'm not totaly sure) 26-Apr,
Indeed.
> it overwrites first 10MB of HDD and tries to overwrite flash
> BIOS by random stuff(?).
Original bytes are just ORed with 44h.
If you are interested, original source code for versions 1.0, 1.1
and 1.2 of CIH is available in excellent Codebreakers 4
(www.codebreakers.org). By the way, this issue also contains a
Linux (yes m_ :) virus.
Best regards,
Spath.
+Spath.