Author Topic: Leaked Windows 7 RC torrents infected with trojan (Read 1864 times)

javajolt · « **on:** April 28, 2009, 06:57:36 PM »

Various torrents of the Windows 7 RC have been infected with a trojan that, if allowed to run successfully, could open a security hole in a user’s system. The affected torrents have the setup.exe install file encapsulated in a self-extracting archive, along with an installer for the trojan itself; launching it triggers an install of both Windows 7 RC and the malware.

The advice is, as always, make sure to corroborate the MD5 checksum on your ISO download with the known, safe MD5, and if the two don’t match then don’t run any of the downloaded files. The good news is that anti-virus software appears to be catching the trojan before it installs, but better to be forewarned than rely on software.

While SlashGear doesn’t advocate installing leaked, unofficial software such as this Windows 7 RC, we recognize some users will continue to do so.

In the interest of security, the MD5 for the “safe”

Windows 7 RC Build 7100 ISO x86 ISO is 8867C13330F56A93944BCD46DCD73590,

while the MD5 for the

Windows 7 RC Build 7100 ISO x64 ISO is 98341af35655137966e382c4feaa282d.

Far safer, however, is to wait for the official RC build, which is reportedly imminent.

fdhealy4 · « **Reply #1 on:** April 28, 2009, 07:52:12 PM »

Thanks Javajolt,

How do you check the ISO for the right MD5 checksum?

Thanks again,

Dale

javajolt · « **Reply #2 on:** April 28, 2009, 10:18:01 PM »

Hi Dale,

If your using a torrent, check in the tracker. Usually highlighting the file will give you all the information contained in that file. Many times it will be listed in the description of the file your about to download.

Wayne
aka: javajolt

bluemomentbass · « **Reply #3 on:** April 29, 2009, 02:26:30 AM »

I DL'd the 32bit & 64bit from Riso links

Quote

http://shared014.nextfactory.nl/windows7/smf/index.php/topic,894.msg2055.html#msg2055

Both versions match the "safe" hashes

[attachment deleted by admin]

bluemomentbass · « **Reply #4 on:** April 29, 2009, 02:33:01 AM »

I personally like HashTab b/c it covers MD5, SHA1 and CRC-32 file hashes, but there are others out there...

Quote

HashTab is a Windows shell extension which adds a tab called "File Hashes" to the Windows Explorer file properties. The tab contains the MD5, SHA1 and CRC-32 file hashes. These are common hashes that are used to verify the integrity and authenticity of files. Many download sites list the MD5 hash along with the download link. The HashTab makes it very simple for Windows users to check these hashes on any file on the system without using external tools.

http://beeblebrox.org/hashtab/

Quote from: fdhealy4 on April 28, 2009, 07:52:12 PM

Thanks Javajolt,

How do you check the ISO for the right MD5 checksum?

Thanks again,

Dale

News:

Author Topic: Leaked Windows 7 RC torrents infected with trojan (Read 1864 times)

javajolt

Leaked Windows 7 RC torrents infected with trojan

fdhealy4

Re: Leaked Windows 7 RC torrents infected with trojan

javajolt

Re: Leaked Windows 7 RC torrents infected with trojan

bluemomentbass

Re: Leaked Windows 7 RC torrents infected with trojan

bluemomentbass

Re: Leaked Windows 7 RC torrents infected with trojan