Sysbug trojan 11/25/03

Discussion in 'malware problems & news' started by bigc73542, Nov 25, 2003.

Thread Status:
Not open for further replies.
  1. bigc73542

    bigc73542 Retired Moderator

    Joined:
    Sep 21, 2003
    Posts:
    23,934
    Location:
    SW. Oklahoma
    Info On this trojan can be found at the link.




    http://www.eweek.com/




    Home > Special Reports > Securing Windows > Trojan Horse Making Its Way Into Windows Systems
    Trojan Horse Making Its Way Into Windows Systems
    By Dennis Fisher
    November 25, 2003


    A new Trojan horse hidden in an e-mail purported to be carrying pornographic pictures is beginning to make the rounds on the Internet.

    The Trojan is known as Sysbug and provides its creator with a backdoor into infected systems running versions of Windows from 95 through XP. It copies itself to the Windows installation folder and also adds a new registry entry that ensures the Trojan will run every time the PC starts up.

    Check out eWEEK.com's Special Report Securing Windows.

    Once resident on a computer, Sysbug is capable of copying a variety of data about the machine and sending it back to its creator, according to Sophos Inc., an anti-virus company based in Lynnfield, Mass. The Trojan gathers data on e-mail accounts and remote access accounts, then opens TCP port 5555 and listens for commands from its author.

    The Trojan arrives in an e-mail with an attachment that is zipped and contains an executable. The e-mail begins:

    "Hello my dear Mary,

    I have been thinking about you all night. I would like to apologize for the other night when …"

    The message then goes into more explicit detail
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.