This Trojan installs another Trojan program to the victim machine.
It is a Windows PE EXE file. It is packed using UPX. The file is 38,400 bytes in size. The unpacked file is approximately 84KB in size.
This Trojan logs the user’s keystrokes. It is a Windows PE EXE file. It is written in Visual C++. The file is 13,824 bytes in size.
Installation
Once launched, the Trojan copies itself to the Windows system directory as “systemks.exe”:
%System%\systemks.exe
It then registers itself in…
This Trojan opens a range of URLs without the knowledge or consent of the user. It is a Windows PE EXE file. The file is 28,672 bytes in size. It is written in Visual Basic.
Remote Adminstrator will provide full access to the interface of a remote machine in real time mode. (It is similar to pcAnywhere from Symantec). The author of this program is Dmitry Znosko. The website address for this product is www.famatech.com
The program can be used for remote adminstration…
This Trojan uses spoofing technology. It is a fake HTML page. It is designed to steal confidential information from Caja Madrid clients.
The Trojan arrives in the guise of an important email from Caja Madrid.
The email contains a link which exploits the Frame Spoof vulnerability in Internet…
This worm infects computers running under Windows. It spreads via poorly protected network resources.
The worm itself is a PE EXE file. It is written in Microsof Visual C++. The file is approximately 37KB in size. It is not packed in any way.
Installation
Once launched, the worm copies itself…
This Trojan is written in Assembler, and is not packed in any way. The file is 8,192 bytes in size.
If the Trojan is launched from a directory other than %Windir%, the following error message will be displayed:
Once launched, the Trojan copies itself to the Windows system directory as “pic.exe”…
This family of Trojans downloads files via the Internet without the user’s knowledge or consent. The Trojans are generated using another Trojan program.
The Trojans are Windows PE EXE files. The file size may vary.
This Trojan will periodically load a designated web page in the Internet browser. It is a Windows PE EXE file. The executable file is 36 864 bytes in size. It is written in Visual C++.
This backdoor will give a remote malicious user full access to the victim machine. The program is a Windows DLL file. The file size may vary significantly.
Installation
This backdoor will be installed on the victim machine by another malicious program.
When installing, the backdoor extracts a…
This Trojan is a Windows DLL file. The file is 39,688 bytes in size. It is packed using UPX. The unpacked file is approximately 70KB in size. It is written in C++.
Installation
This Trojan will be installed on the victim machine by other Trojan programs.
During installation, the following…
Details
Hue.482
It is a harmless memory resident parasitic virus. Being executed it searches for COM files of the current directory, then writes itself to the end of the file. Then it hooks INT 21h and writes itself to the end of COM files that are executed or opened. The virus does not manifest itself in any way. It contains the text strings:
Tu Hue
*.COM I am developing !!!
—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA1
National Cyber Alert System
Technical Cyber Security Alert TA06-318A
Microsoft Security Updates for Windows, Internet Explorer, and Adobe Flash
Original release date: November 14, 2006
Last revised: –
Source: US-CERT
Systems Affected
* Microsoft Windows
* Microsoft Internet Explorer
* Adobe Flash
Overview
Microsoft has released updates that address critical …
Read more at checksum.org…
This Trojan provides a remote malicious user to perform operations on the victim machine. It is managed via IRC.
The program itself is a Windows PE DLL file. It is written in Visual C++.
The file is 43 520 bytes in size, and is not packed in any way.
Installation
This backdoor will be…
This Trojan logs the user’s keystrokes. It is designed to steal a range of confidential information. It harvests information entered via the keyboard. This Trojan is a Windows DLL file. The file is 73,728 bytes in size. However, the size of the infected file may vary. It is packed using…