The virus may be obtained from the operators command to destroy all traces of their presence.
The creators of the virus Flame have thought it a team of self-destruction, which removes all traces of their activity from the infected computer. This informs the company Symantec, which employees have seen this command.
“The team self-destruct has been designed to completely remove the Flame of the compromised system”, – stated in the notice of experts.
Infected computers regularly connect to the command server for additional instructions. In the example, which is observed by the antivirus companies, the command server is transmitting the virus file named browse32.ocx. This file can be considered as a complete unit with the sole task – cleaning the affected system and remove all traces of the Flame.
Browse32.ocx module detects the presence of all the files on your PC Flame, removes them, and then fills the freed disk space “garbage” data, eliminating the possibility of recovering files.
“He (the module – Ed.) Tries not to leave any trace of contamination” – referred to in the notice Symantec.
Note that, according to Dutch researcher of the National Research Center of Mathematics and Computer Science (CWI) Mark Stevens (Marc Stevens), a virus previously unknown Flame uses a cryptographic algorithm. Using new methods of cryptography which again confirms the high professionalism of the experts involved in the development of cyber weapons.