In this project windows is referred to all the windows operating systems such as windows 98, 2000, NT, XP, Vista, 7 and 8 and all of their related service packs.
I need a file crypter with an internal stub which must be able to encrypt executable files (such as Computer worms, bots, viruses and spywares and adwares/malwares) and make them completely undetectable to all the anti-viruses and security suites on the market ESPECIALLY TO the followings:
0- Windows defender and the native windows anti-virus
1- Symantec End point protection Version 10, 11 and 12 (and its updates [url removed, login to view] RU1 most recently updated)
2- Norton 360 V6 (and its updates)
3- ESET Smart security 5 (and its updates)
4-Node 32 (and its updates)
5- Kaspersky Pure 2.0 (and its updates)
7-McAfee Total Protection and Internet security (with its most recent updates)
So the Crypter must make the target files absolutely undetectable to the above mentioned anti-virus/security suites as well as other anti-viruses available (such as those on Jetti virus scan)
CAUTION: Make sure you manually test your crypter against the Anti-viruses/security suites mentioned above since some of them are not available through online scanning services. (particularly Symantec and keep in mind that symantec end point protection is distinctly different than NORTON and NORTON 360)
In addition to making any viruses, worms and bots FUD the following features must be available on the crypter:
1- End OF File preservation (EOF)
2- Start up addition (this option must add the crypted file to the start up of windows)
3- Changing the name of the process (to a fake name or [url removed, login to view] or anything) this means that if a trojan is crypted with this crypter it must be possible to change the name of Virus process to a particular name such as [url removed, login to view] or anything. and once the crypted file is clicked on by the victim, the file that was crypted by the crypter must run under that particular process name which was chosen before crypting the file on the crypter's interface.
4- Hiding the name of the process under which the crypted file runs. (similar to feature no 3 but the process name should be hidden or empty)
5- Binder (it must be possible to bind the executable to any other file formats and once the crypted file is clicked on both of the files must run) file formats such as PDF, GPJ, JPEG, WAV, MP3, DOC, xls, ...etc (it is not just about binding them together but once the crypted file is clicked on both the exe file as well as PDF...etc must run at the same time)
6- Icon changer (it must be possible to load a particular icon as the final icon of the crypt exe)
Please keep in mind that NO FULL upfront payment is available. I have to test your Crypter personally and make sure that it is working and satisfying the above mentioned requirements. I have all of those antiviruses and I check the files against them.
The source code of the crypter is NOT required.
Your submitted crypter will be tested with Poison ivy, Darkcomet as well as the following metasploit payloads:
Looking forward for your bids.