The MBR virus has the function of staying in the Master Boot Record (MBR) causing the system to load the sector infected by the virus after being initialized. This type of virus causes an infection in the Basic Input/Output System (BIOS) using Disk Operating System (DOS) commands to infect the disk.
This repository was created with the intention of demonstrating the attack of this virus from the execution of it in a Linux system.
Note: DO NOT RUN on your personal machine, use a virtual machine to do the experiment.
- GCC
- NASM
In the file mbroverwrite.c in #define DISK "/dev/sda" is indicating the disk where will be replaced by the payload.
In the file mbroverwrite.c in unsigned char payload[] is storing the compiled file message.asm, where the values are in HEX.
$ git clone https://github.com/MrEmpy/MBROverwrite.git
$ cd MBROverwrite
$ make
$ sudo ./mbroverwrite
