Quote:
Originally Posted by AnimeFan188
"DuQu, the malicious code that followed in the wake of the infamous Stuxnet
code, has been analyzed nearly as much as its predecessor. But one part of the
code remains a mystery, and researchers are asking programmers for help in
solving it.
The mystery concerns an essential component of the malware that communicates
with command-and-control servers and has the ability to download additional
payload modules and execute them on infected machines."
See:
http://www.wired.com/threatlevel/201...tery-language/ |
Its completely possible that its a homebrew language with a homebrew compiler - I have several friends who have written their own compilers over the years. The scraps of DuQu I've seen look fairly generic ... something like assembly with special class and data features.