View and vote on the article here: Virii and Artificial Intelligence
Virii and Artificial Intelligence| Category | | | Summary | | | Body | Virii & Artificial Intelligence
By crtw (a.k.a. Icydemon)
--------------------------------------------------------------------------------
FOR YOUR INFORMATION: THIS ARTICLE/TUTORIAL PROVIDES INFORMATION ABOUT A MALICIOUS PROGRAM ("VIRUS"). THIS PROGRAM IS COPYRIGHTED BY CRTW, AND MADE FOR REASEARCH PURPOSES, AS YOU CAN SEE IN THIS ARTICLE/TUTORIAL, AND ONLY FOR THAT REASON! ONLY A LITTLE FEATURES OF THIS PROGRAM WILL BE SHOWN HERE BECAUSE MOST OF THEM REFEER TO AGRESSIVE BEHAVIOUR TOWARDS OTHER PROGRAMS.
1. Virii (plural of Virus)
With the term "Virus" we define a parasitic organism that infects another organism, acts as a parasite inside it and eventually destroys it before moving to another organism. In computers we define "Virus" as a malicious program which "infects" (copies its code inside) other programs, keeps replicating and finally spreads to other computers. Biological Viruses have a lot in common with Electronic Viruses. But electronic viruses cannot evolve themselves. Or they can?
Viruses first appeared in 80's when programmers asked themselves if it is possible to create such programs. In the last years we saw massive-destruction viruses like Melissa, Blaster and Sasser, who are spreading with a great speed through internet. Although there are some other programs called "Anti-Virus" which, acting like medicine in human, can destroy virii, infection sometimes is inevitable.
2. Artificial Intelligence
Artificial Intelligence (A.I.) was first seen in 50's. From then A.I. has evolved so much that even games support it (see AoE II by Microsoft). Artificial Intelligence is based on rules set by the programmer and tries to imitate human thinking. A combination of A.I. and Virii would be catastrophic. Follow me to see how
3. The CIV Virus (Computer Immunodeficiency Virus)
A little introduction first of all. Many people suffer from AIDS, which is effect of the Human Immunodeficiency Virus (HIV). HIV attacks those cells which help human protect from Viruses. So HIV simply destroys human protection against virii and then a simple virus can kill him. So simple, so hard.
Three years ago, I started a research project into a virus which i call Computer Immunodeficiency Virus (CIV). This virus in its early stage infected just the antivirus software in every computer and made them not working (thus they could not prevent other virii from entering the system). I wrote also a removal tool and tried a) to nullify virus' weaknesses and b) to find new ways of removing it.
Last year I took three or four books on Artificial Intelligence and started implementing A.I. into CIV, in three phases. A) Stealth Mode, where the virus can stay for a long time into the system and then start infecting the system. B) Attack Mode, where the virus chooses it's attack method carefully and C) Evolution, where the virus can evolve into a new form, add new features to itself, delete others etc.
4. Analysis
Stealth viruses are those who can hide and activate some time after entering the system. A good stealth system is required nowadays so to prevent destruction of the program before infecting.
Attack modes in CIV are many and variable. Based on a rules set, if the virus has connection into internet, searches for antivirus software (which are they, their last versions) and if identifies an anti-virus program in the system, the virus tries to attack it by using a simple set of rules. Note that the attack must remain hidden (so we have no corrupted files) and silent. If through the passing of time virus sees that some attacks are performed less and less, it changes them (evolution) or discards them.
Evolution is its most important feature. I picked up a weird evolution algorithm so to identify the virus and see a)How fast does it evolve, b)Evolution Procedure. Imagine that CIV version 1 was codenamed "Neo".:
(CIV EVOLUTION CHAIN)
NEO (V1.0)
/
JIM (V2.1) ALICE (V2.2)
/ /
NO EVOLVING (DEAD) - LAZARUS (V4.0) - NICK (V3.1) SIREN(V3.5) TRIN (V3.2) - SPIKE (V4.1) - MIKE (V5.1) - DYKE (V6.1) - DEAD
/ | / / /
CHAOS (V4.4) INE(V4.6) SERENITY(V4.9) / /
/ / /-----/ /
RAGE (V5.2) INDO (V5.4) SOUL (V5.5) CLARITY (V5.8) /
/ / /------/
NO EVOLVING (DEAD) - MOSEZ (V6.3) DELILAH (V6.6) DIVINITY (V6.9)
| |
RAYE (V7.1) FUTURITY (V7.5) - NO EVOLVING (DEAD)
|
ANNIE (V8.1) - SARAH (V9.1) - MORPHEUS (V10.1) - NO EVOLVING (DEAD)
This is the evolving tree of the virus from June 2nd 2004, which infected my computer. Male codenames declare a form of the virus which attacks systems and then tries to see if it can survive (evolution). Female codenames declare viruses which infect computers, they do not attack but they analyze the system and try to make the new version faster. As you can see some times, if the virus finds a variant (like "Jim" & "Alice") they combine what they have learned into a new version. After the new version is made the virus runs for a little (6-8 hours) into the computer and analyzes it. If it finds any changes, it creates a new updated version and dies (deletes itself) instantly. The life-circle of the virus extends from 6 minutes to 2 months ("Morpheus" Survived only 6 minutes).
This whole procedure lasted six months, and allowed me to see some of the virus evolution. I saw how it is evolving and by creating a monitoring application i saw when and under what conditions the virus evolved. Unfortunately my programming went wrong, in many stages. First the evolving procedure sometimes did not produce a new virus. This is due to the sensativity of each virus and their ability to understand and see system changes. Secondly, traces left by the virus and its variants for me to display its progress into the system, were identified by my anti-virus so it killed the last of the CIVians, into six minutes after the infection. Thirdly, the virus is not so "intelligent" as it was supposed to be due to lack of time. And finally, the virus was not planned for real use. That made it weaker and finally dead.
5. Conclusion
This virus is extremely aggressive only to the removal application I made. It will not and cannot harm any other software at this time (and never will do). It infects the system, analyses it and then goes into attacking (male versions). The presence of such a virus which can infect all anti-virus applications and not only, and the spreading of it through internet will be disastrous for internet community. Imagine what could happen if HIV was spread through air... Billions of dead people due to polluted air. You may say that its funny but human infects Planet Earth. Exploits the planet and then cries for earthquakes, floods, tsunamis, etc. Is the Anti-Virus program of Earth activated?
Anyway, Virii & A.I. combined can be extremely harmful for computers and I want to believe that no person could sit and make such a virus (if there isn't one). As you could see with CIV, Each version was more aggressive than the previous and all begun one single version. I Hope that we wont see anything like that neither in the near future nor in the distant future.
--------------------------------------------------------------------------------
Written by crtw (01April 2005)
crtw is a Member of Class Delivery (Brigade #101)
.:edited by purefreak
|
|
This article was imported from the CyberArmy University site. (original author: PixieLuv)
There are no replies to this post yet.
|