It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Thank you.
Some features of ATS will be disabled while you continue to use an ad-blocker.
(visit the link for the full news article)
The rest of the program is written and compiled in C++, but not the Duqu Framework. It "is definitely object-oriented," wrote Igor Soumenkov but certainly not anything the analysts had ever seen before.
This discovery only further fuels speculation that both Duqu and Stuxnet are the results of a very advanced, very well-funded organization's or, more likely, nation's efforts. As Alexander Gostev, chief security expert at Kaspersky Lab, speculated,
With the extremely high level of customization and exclusivity that the programming language was created with, it is also possible that it
What is Duqu? The Duqu trojan is composed of several malicious files that work together for a malicious purpose. The first component is a Windows kernel driver that searches for and loads encrypted dynamic link library (DLL) files. The decrypted DLL files implement the main payload of Duqu, which is a remote access trojan (RAT). The RAT allows an adversary to gather information from a compromised computer and to download and run additional programs. In addition to the RAT, another piece of malware was recovered with Duqu in one instance. This malware is an information stealer designed to log user keystrokes and other information about the infected system. This piece of malware is believed to be related due to programming similarities with the main Duqu executables.
Originally posted by DarkSarcasm
It's not a nation, its a group of extremely bright children and young adults that were educated by NASA.
Originally posted by DarkSarcasm
It's not a nation, its a group of extremely bright children and young adults...
Originally posted by pianopraze
Whoever Wrote the Duqu Trojan's Framework Wrote It in an Unknown Programming Language
gizmodo.com
(visit the link for the full news article)
The rest of the program is written and compiled in C++, but not the Duqu Framework. It "is definitely object-oriented," wrote Igor Soumenkov but certainly not anything the analysts had ever seen before.
This discovery only further fuels speculation that both Duqu and Stuxnet are the results of a very advanced, very well-funded organization's or, more likely, nation's efforts. As Alexander Gostev, chief security expert at Kaspersky Lab, speculated,
With the extremely high level of customization and exclusivity that the programming language was created with, it is also possible that it
Related News Links:
www.securelist.com
malware.cbronline.com
Originally posted by SeekerofTruth101
C++ is highly flexible. Once you get the basic principles right, you can, not only improve upon it, but create something new, based upon your requirement.
Conclusions
The Duqu Framework appears to have been written in an unknown programming language.
Unlike the rest of the Duqu body, it's not C++ and it's not compiled with Microsoft's Visual C++ 2008.
The highly event driven architecture points to code which was designed to be used in pretty much any kind of conditions, including asynchronous commutations.
Given the size of the Duqu project, it is possible that another team was responsible for the framework than the team which created the drivers and wrote the system infection and exploits.
The mysterious programming language is definitively NOT C++, Objective C, Java, Python, Ada, Lua and many other languages we have checked.
Compared to Stuxnet (entirely written in MSVC++), this is one of the defining particularities of the Duqu framework.
TVE creates virtual machines within a single computer using VMware. Each virtual machine can run different operating systems – such as Windows, Linux, and Solaris – and at different security levels in separate windows on a shared computer and monitor.
“Using the VMware software along with the hardware capabilities of the newer Intel chipsets allows us to get a higher assurance of separation between these [classification] domains than we had been able to 5 or 10 years ago”, he said.
In addition to VMware, General Dynamics has worked with Intel in developing the TVE platform, which uses Intel’s vPro technology to provide hardware-based information security that ensures the classified networks are kept separate.