Visit my Linktree to access my socials and other channels: linktr.ee/mausolfb
-----------------------------------------------------------
. Matrix is a "harmless" memory-resident polymorphic virus for Windows 9x systems. When loaded it installs memory-resident in Windows as a VxD driver thereby providing file access and thus able to infect .EXEs and .SCRs as they're accessed (encrypting its code within the program and marking the generation of the virus). It will also infect DOS executable programs (.COM) with a text/halt payload. It will also search for any virus database files with the following names and delete them:
"AVP.CRC, ANTI-VIR.DAT, IVB.NTZ, CHKLIST.MS."
Payloads:
On the 6th of April regardless of year Matrix inserts a new registry entry within HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer of the Windows registry called "NoClose" and sets it to "1" (true). This policy prohibits Windows Explorer from allowing shutdown (removes the shutdown function from the Start Menu and from Task Manager).
On the 7th of July regardless of year when an infected DOS executable (.COM) is run the program will output the following to the screen:
"Wake up, Neo...
The Matrix has you...
w9x.mATRiX"
Afterwards it will HALT the processor which stops all activity on the machine and a hard reset/power cycle will be required.
-----------------------------
Like the Facebook page: / brian.mausolf
Follow me on Twitter: / mausolfb