The blog post from Kaspersky Lab is already filled with comments
guessing at the possible programming language used. Check them out for
yourself: The Mystery of the Duqu Framework.
One comment from user As400tech, who registered his account with
Kaspersky Lab today, looks particularly promising:
That code looks familiar
The code your referring to .. the unknown c++ looks like the older
IBM compilers found in OS400 SYS38 and the oldest sys36.
The C++ code was used to write the tcp/ip stack for the operating
system and all of the communications. The protocols used were the
following x.21(async) all modes, Sync SDLC, x.25 Vbiss5 10 15 and 25.
CICS. RSR232. This was a very small and powerful communications
framework. The IBM system 36 had only 300MB hard drive and one
megabyte of memory,the operating system came on diskettes.
This would be very useful in this virus. It can track and monitor
all types of communications. It can connect to everything and
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives