Full
Name: |
BackDoor.Cont |
| Type: |
Trojan |
| Also Known As: |
Win32.Mytob.BO [Computer Associates], Net-Worm.Win32.Mytob.gen [Kaspersky Lab], W32/Mytob.gen@MM [McAfee], W32/Mytob-AE [Sophos], WORM_MYTOB.CD [Trend Micro],W32/Sdbot.worm.gen.h , Backdoor.Win32.Rbot.qu |
| Danger Level: |
4 |
| Category Description: |
Trojans are malicious applications that pose themselves as legitimate software in order to trick users to install them. Once on the victim's machine, it may run any number of malicious process to steal vital information or inflict damage to other software. |
| Comment: |
Backdoor.Cont is an IRC backdoor Trojan , which runs continuously in the backdrop, providing a backdoor server on a port. It listens for instructions from a distant malicious user. The supposed instructions are implemented locally on affected machines.
Drops a file "C27D8FEF-D7AE-42c0-82E6-F30598265639.exe" at location %temp%\C27D8FEF-D7AE-42c0-82E6-F30598265639.exe. This file is generated by the packer used to compress the executable file and is not malicious.
Note: %Temp% is a variable that refers to the Windows temporary folder. By default, this is C:\Windows\TEMP (Windows 95/98/Me/XP) or C:\WINNT\Temp (Windows NT/2000). |
| |
|
| Properties: |
|
Back to the list of products removed by X-Cleaner
|
