Sysbug trojan 11/25/03

Discussion in 'malware problems & news' started by bigc73542, Nov 25, 2003.

Thread Status:
Not open for further replies.
  1. bigc73542

    bigc73542 Retired Moderator

    Sep 21, 2003
    SW. Oklahoma
    Info On this trojan can be found at the link.

    Home > Special Reports > Securing Windows > Trojan Horse Making Its Way Into Windows Systems
    Trojan Horse Making Its Way Into Windows Systems
    By Dennis Fisher
    November 25, 2003

    A new Trojan horse hidden in an e-mail purported to be carrying pornographic pictures is beginning to make the rounds on the Internet.

    The Trojan is known as Sysbug and provides its creator with a backdoor into infected systems running versions of Windows from 95 through XP. It copies itself to the Windows installation folder and also adds a new registry entry that ensures the Trojan will run every time the PC starts up.

    Check out's Special Report Securing Windows.

    Once resident on a computer, Sysbug is capable of copying a variety of data about the machine and sending it back to its creator, according to Sophos Inc., an anti-virus company based in Lynnfield, Mass. The Trojan gathers data on e-mail accounts and remote access accounts, then opens TCP port 5555 and listens for commands from its author.

    The Trojan arrives in an e-mail with an attachment that is zipped and contains an executable. The e-mail begins:

    "Hello my dear Mary,

    I have been thinking about you all night. I would like to apologize for the other night when …"

    The message then goes into more explicit detail
Thread Status:
Not open for further replies.