EvilZone

Hacking and Security => Hacking and Security => : hppd February 20, 2014, 06:08:31 PM

: How does a rootkit get into the MBR?
: hppd February 20, 2014, 06:08:31 PM

So on one of my computers (the windows one) I have a rootkit. I don't know for sure but I think so.. I tried a lot of things nothing is able to remove it. So I was looking into rootkits and found out they can boot up before windows does by editing the MBR. But why the fuck can a virus touch this and how does it do it??

Edit: Fuck yeah! Got rid of it :P

: Re: How does a rootkit get into the MBR?
: proxx February 21, 2014, 03:53:14 PM

Very simple yet very complex.
The MBR is nothing but a x first part of a partition, often first part of the HDD.
The bios gives the hardware control to the MBR which stages the rest of the boot.
This MBR is writeable just like like any other part of the HDD.
Thus the complex part, some malicious code can be inserted onto these sectors.
Writing a boot sector virus is some neat skill.

: Re: How does a rootkit get into the MBR?
: Kulverstukas February 21, 2014, 04:51:20 PM

It takes skill to write a boot sector virus that loads before system does, not just fucks the partition table up... such stuff is really interesting :)