Bomber (computer virus)

Bomber
Bomber
Malware details
Alias	Commander Bomber
Type	DOS
Subtype	File and boot infector
Classification	Virus
Isolation date	1992
Origin	Bulgaria
Author	Dark Avenger

Bomber (also known as Commander Bomber) is a DOS polymorphic memory resident computer virus, known for its technique of "patchy infection". This method of infection is very similar to that which is utilised by the OneHalf computer virus. According to Vesselin Bontchev, Bomber was created by Bulgarian virus writer the Dark Avenger.^[1] It was first isolated in 1992.^[2]

Bomber was not encrypted.^[3] Contrary to the usual method of infecting executables (which is to append virus body to the executable and to change the entry point), it inserts several fragments ("patches") of its code in random places inside the file. These fragments transfer control to each other using various mechanisms.^[4] The method of infection makes the detection of the virus difficult by anti-virus programs, and it means that they would have to scan the file in its entirety in order to detect the virus. It was the first ever computer virus known to use this stealth strategy.^[5]

The size of the Bomber executable is approximately 4096 bytes and contains the following text:^[6]

COMMANDER BOMBER WAS HERE
[DAME] [DAME]

References

^ Bontchev, Vesselin (1997-03-01). "Future Trends in Virus Writing". International Review of Law, Computers & Technology. 11 (1): 129–146. doi:10.1080/13600869755875. ISSN 1360-0869.
^ Marion, Nancy E.; Jason Twede (2020). Cybercrime: An Encyclopedia of Digital Crime. ABC-CLIO. p. xx. ISBN 9781440857355 – via Google Books.
^ Nishikin, Andy; Pavluschick, Mike (June 1999). "pOLEMorphism" (PDF). Virus Bulletin: 14.
^ Grimes, Roger A. (2001). Malicious Mobile Code: Virus Protection for Windows. O'Reilly Media. p. 41. ISBN 9781491994719 – via Google Books.
^ Solomon, Alan; Tim Kay (1994). Dr Solomon's PC Anti-virus Book. New-Tech. p. 41. ISBN 9780750616140 – via Google Books.
^ Szor, Peter (2005). The Art of Computer Virus Research and Defense (ebook ed.). Pearson Education. p. 189. ISBN 9780672333903 – via Google Books.

[1] Bontchev, Vesselin (1997-03-01). "Future Trends in Virus Writing". International Review of Law, Computers & Technology. 11 (1): 129–146. doi:10.1080/13600869755875. ISSN 1360-0869.

[2] Marion, Nancy E.; Jason Twede (2020). Cybercrime: An Encyclopedia of Digital Crime. ABC-CLIO. p. xx. ISBN 9781440857355 – via Google Books.

[3] Nishikin, Andy; Pavluschick, Mike (June 1999). "pOLEMorphism" (PDF). Virus Bulletin: 14.

[4] Grimes, Roger A. (2001). Malicious Mobile Code: Virus Protection for Windows. O'Reilly Media. p. 41. ISBN 9781491994719 – via Google Books.

[5] Solomon, Alan; Tim Kay (1994). Dr Solomon's PC Anti-virus Book. New-Tech. p. 41. ISBN 9780750616140 – via Google Books.

[6] Szor, Peter (2005). The Art of Computer Virus Research and Defense (ebook ed.). Pearson Education. p. 189. ISBN 9780672333903 – via Google Books.

[1]

[2]

[3]

[4]

[5]

[6]

Hacking in the 1990s
Timeline of security hacking incidents Timeline of computer viruses and worms
Incidents	Moonlight Maze Operation CyberSnare Operation Sundevil
Groups	globalHell Global kOS L0pht Level Seven Milw0rm MOD
Individuals	Acid Phreak The Analyzer Condor Corrupt Cucumber Dark Avenger Erik Bloodaxe Jonathan James Phiber Optik Steven Games YTCracker
Malware	1260 5lo ABC Abraxas Acid Acme Ada AGI-Plan Alcon Ambulance AntiCMOS AntiEXE ARCV-n Barrotes Bliss Bomber BonziBuddy Casino CIH CTX Eliza ExploreZip Form Happy99 Hare KoKo KAK Melissa Michelangelo Natas OneHalf Ontario Scott's Valley Staog Sub7 Twelve Tricks Virus Creation Laboratory Whale