So it turns out that annoying high frequency whine in my soundsystem isn't crappy electrical noise that has been plaguing my wiring for years. It is actually high frequency ultrasonic transmissions that malware has been using to communicate to airgapped computers... one "ghost" located at least. And now we know how the "hypervisor" functions, its probably stored in the realtek firmware, and thats one of the ways it survives reinstalls and BIOS reflashing. Off to find tools to dump the RealTek audio chips, and to try to find clean firmware to compare it to. Haven't ruled out video firmware yet, either.
30 plus ones
Shared publicly•View activity
View 15 previous comments
- I wonder if other network attached devices could be used in this high frequency audio schema as well. Cell phones, switches, routers, etc.
Oct 31, 2013
- Had a hackintosh and audio was noisy. Now I have real Mac and it's noisy as well! How about deleting audio driver files (extensions), or injecting some fake audio drivers there (if it dont start up wihout)?Oct 31, 2013
- Following the prompt of Prof. Terence Tao G+ ( via Prof. Allen Knutson):
http://photos.pcpro.co.uk/blogs/wp-content/uploads/2011/04/Foil-house.jpgOct 31, 2013
- You could use a spectrum analyser to "see" the signal: if it's frequency and/or amplitude modulated you should be able to detect it.
I must say, there is a lot of skepticism around me about this #badBIOS story.Nov 1, 2013
- put the output wave file through something like audacity. might find something interesting that way just by looking at the waveform.Nov 1, 2013
- Holy cow. I'll be following this one closely.Nov 2, 2013
Add a comment...