This Trojan downloads files via the Internet without the user’s knowledge or consent. It is a Windows PE EXE file. The file is 11,350 bytes in size. It is packed using UPX. The unpacked file is approximately 45KB in size. It is written in Borland Delphi.

This Trojan downloads files via the Internet without the user’s knowledge or consent.

It is a Windows PE EXE file. It is written in Borland C++. It has the following components:

CLIENT.EXE — 57 344 bytes
SERVER.EXE — 65 024 bytes
X.EXE — 4 096 bytes

This program is designed to listen on port 139. It is a Windows PE EXE file. The file is 238,592 bytes in size. It is written in Borland Delphi.

This Trojan logs the user’s keystrokes. It is a Windows PE EXE file. It is written in Visual C++. The file is 12,288 bytes in size. It is packed using ASPack. The unpacked file is approximately 20KB in size.

Installation

Once launched, the Trojan copies itself to the Windows system…

This Trojan is a Windows PE EXE file. The file is 190,976 bytes in size.

This Trojan provides a remote malicious user with access to the victim machine. It is a Windows PE EXE file. The size of the backdoor components varies between 8KB to 80KB.

Installation

When launched, the backdoor copies its executable file to the Windows system directory:…

This Trojan provides a remote malicious user with access to the victim machine. It is managed via IRC. It is a Windows PE EXE file. The file is 40,717 bytes in size. It is packed using FSG. The unpacked file is approximately 120KB in size.

Installation

When installing, the backdoor launches an…

This Trojan downloads files via the Internet without the user’s knowledge or consent. It is a Windows DLL file. The file is 4096 bytes in size. It is written in Assembler.

This Trojan downloads files via the Internet without the user’s knowledge or consent. It is a Windows PE EXE file. It is written in Delphi. The file is 25,088 bytes in size.

This Trojan is designed to install other Trojan programs to the victim machine without the knowledge or consent of the user. The Trojan itself is a Windows PE EXE file 27,648 bytes in size.

This Trojan is designed to install other Trojan programs to the victim machine without the knowledge or consent of the user. The Trojan itself is a Windows PE EXE file 7200 bytes in size. It is packed using UPX. The unpacked file is approximately 22KB in size.

This Trojan is a modified Windows %System%\drivers\etc\hosts file, which is used to translate domain names (DNS) to IP addresses. The file is modified in such a way as to prevent the user from viewing the sites listed below.

The following strings are added to the hosts file.

216.81.27.1…

This Trojan is designed to install other malicious programs. It is a Windows PE EXE file. The file is 19,456 bytes in size. It is packed using UPX. The unpacked file is approximately 40KB in size.

This Trojan is a modified Windows %System%\drivers\etc\hosts file, which is used to translate domain names (DNS) to IP addresses. The modified file is 46 599 bytes in size. The file is modified in such a way as to prevent the user from viewing the sites listed below.

This Trojan downloader is a Windows PE EXE file. The file is 32,256 bytes in size. The unpacked file is approximately 90KB in size. It is written in Visual C++.