Hacking Malware on Roms

[Rxq]

Is there anyways to check wheather a rom has mal-ware?
What kind of damage can viruses do to a ds?
Is it fixable?

 

[Covarr]

A ROM can't harm your machine unless you're flashing your firmware. End of story.

 

[ZildjianKX]

A ROM can't harm your machine unless you're flashing your firmware. End of story.

Umm... I thought it could write to a portion of your firmware. That's why Flashme is nice, since it allows you to restore your firmware in case someone wants to be evil and write a program to overwrite the firmware.

The recovery portion of Flashme is on the portion of the firmware that requires the bridge of the pins to write to, so software can't overwrite that portion unless you bridge the pins.

 

[Xeronage]

Wrong, there are 2 malwares, Taihen and Bootloader. They overwrite the writable part of the Firmware ROM. And you don't find them easily either..

The only protection against it is FlashMe's Recovery Mode

 

[Heran Bago]

Wrong, there are 2 malwares, Taihen and Bootloader. They overwrite the writable part of the Firmware ROM. And you don't find them easily either..

The only protection against it is FlashMe's Recovery Mode

No, there's another, easier protection; don't run them.

However, DSlazy has the ability to scan a file for the DS trojan.

 

[Rxq]

Wrong, there are 2 malwares, Taihen and Bootloader. They overwrite the writable part of the Firmware ROM. And you don't find them easily either..

The only protection against it is FlashMe's Recovery Mode

No, there's another, easier protection; don't run them.

However, DSlazy has the ability to scan a file for the DS trojan.

Use DSlazy and load the rom and click crashme?

Btw how often are roms with malware in them found?

I cant flash my DS L at the moment, so any other precautions i can take?

 

[FifthE1ement]

I have the information listed in my Flashcart and homebrew guide to help you spot malware:

http://forums.maxconsole.net/showthread.php?t=27045

Hope that helps,

FifthE1ement

 

[bikingcam]

The threat is fairly small but it sure would suck if yoyu ran a virus

 

[neojei]

Whats stopping anyone else from writing another trojan?

 

[SlyGuy]

Whats stopping anyone else from writing another trojan?

Exactly what I was thinking...

 

[WishCow]

Basicly nothing.

You should only download roms/apps or anything homebrew from trusted sources if you don't have flashme.

 

[throwingks]

You could also cross-reference the checksums of your ROMs with a trusted site.

 

[neojei]

How does just checking checksums on the ROMs prevent you from running malware, if they could write a trojan, couldn't they just change the checksum? It makes downloading roms such a scary thing. Good thing I don't

But it does get me interested for other people's sake about malware.
DSLazy can detect just the DS Trojan? Could using antivirus software or something detect it too?

 

[bobbyblunt]

Norton protects against DS trojans. I'm sure the other major antivirus software does aswell.

 

[throwingks]

http://darkfader.net/ds/
shows the md5sum of the couple of known trojans. All the way down under Malware.

If anything changes from the original file the crc32 is completely different, so only the original ROM would generate the correct crc32.
http://ndslister.emubase.de/show_list.de.html
lists crc32s for ROMs

http://en.wikipedia.org/wiki/Cyclic_redundancy_check
explains crc32

Never trust the crc32 from the nfo that comes with the ROM. Always use a program to generate a crc32. Then cross-reference that with a trusted database.

Norton's doesn't protect your DS from anything.

 

[bobbyblunt]

Norton's doesn't protect your DS from anything.

Try uploading a trojan to your cart then. see what norton does.

 

[Heran Bago]

So far, no one has the technical skill to embed a DS trojan into a commercial ROM. When you run DS homebrew, just make sure that other people have done it.
DSOrganize, for example. If many many people have used it and love it, there chances of it being viral if you download it from the official site are about 0%.

Nothing's stopping anyone from making another DS trojan. However, they would be caught very quickly, as the first person who gets hit would make a big deal out of it.
darkfader's (or was it natrium47's?) romloader is an exception because there was a huge demand for it. Once it was released, everyone said "darkfader!?" "ROMLOADER!?" SURELY I MUST RUN THIS NOW RATHER THAN WAIT TO HEAR IF IT WORKS!

edit: Yes, norton picks up on both DS trojans iirc.

 

[OrR]

Embedding a trojan into a commercial rom should be possible for some people. However, replacing a commercial rom with a trojan is easy for everyone.

A ROM can't harm your machine unless you're flashing your firmware. End of story.

Actually it's the other way around: A rom can brick your machine unless you're flashing your firmware with FlashMe. End of story.

 

[omegatr0n]

yeah i thinhk when you download the bricker file norton says its a virus...i wonder what other antivirus programs do that

 

[throwingks]

Norton's doesn't protect your DS from anything.

Try uploading a trojan to your cart then. see what norton does.

Sorry, I did not know that.