Created: APR 2004
OS: Windows
Location: TBD
Posts Tagged ‘APR 2004’
CC_MD
Posted by FAV™ on January 12th, 2010
BlackCore
Posted by FAV™ on January 1st, 2010
Aliases: Backdoor.Win32.VB.pb, Backdoor.Win32.VB.gen, Backdoor.Win32.VB.pd, Backdoor.Win32.VB.pi, Backdoor.Win32.VB.pz, Backdoor.Win32.Feardoor.15.g
Variants: 1.0 Beta, 1.1, 1.2, 1.2.1, 2.0, 2.1
Port: 55126, 55127, 55128
Size: 92kb
Author: Otacon
Created: APR 2004
OS: Windows
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\
Infection: server.exe, systemserver.exe, windll32.exe
Bifrost
Posted by FAV™ on December 19th, 2009
Aliases: Backdoor.Win32.Bifrose.1101, Backdoor.Win32.Bifrose.a, Backdoor.Win32.Bifrose.aa, Backdoor.Win32.Bifrose.adr, Backdoor.Win32.Bifrose.agq, Backdoor.Win32.Bifrose.aci, Backdoor.Win32.Bifrose.az, Backdoor.Win32.Bifrose.b, Backdoor.Win32.Bifrose.d, Backdoor.Win32.Bifrose.ewk, Backdoor.Win32.Bifrose.f, Backdoor.Win32.Bifrose.g, Backdoor.Win32.Bifrose.gx, Backdoor.Win32.Bifrose.hm, Backdoor.Win32.Bifrose.uw, Trojan-Downloader.Win32.Agent.elh, Trojan-Dropper.Win32.Delf.jf, Trojan.Win32.Agent.bcn, Trojan.Win32.Agent.cuf
Variants: 1.0a, 1.0b, 1.1, 1.1 Chinese Edition, 1.1 Chinese Edition v2, 1.1.01, 1.1.01
v2, 1.1.02, 1.1.03, Reloaded 0.0.01, 1.2, 1.2b Private, 1.2.1, 1.2.1 Very Secret
Port: 81, 2000
Size: 15kb
Author: ksv
Created: APR 2004
OS: Windows
Location: HKCU\Software\Microsoft\Windows\CurrentVersion\Run\
HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{9B71D88C-C598-4935-C5D1-43AA4DB90836}\
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\
Infection: server.exe, plugin1.dat, xmchai.exe
Acid Drop
Posted by FAV™ on December 5th, 2009
Aliases: Backdoor.Win32.Feardoor.15.f, Backdoor.Win32.Feardoor.15.c
Port: 8811
Size: 102kb
Author: Acid_Alchemy
Created: APR 2004
OS: Windows
Location: TBD
51D
Posted by FAV™ on December 5th, 2009
Created: APR 2004
OS: Windows
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\
