AntiLamer BackDoor


Name: AntiLamer BackDoor
Aliases: Antilam, Backdoor.Antilam, Backdoor.AJW,
Ports: 29559, 29999, 47891
Files: Antilamerbackdoor1.3.zip - 710,136 bytes Antilamerbackdoor1.4.zip - 807,897 bytes Alb.exe - 283,136 bytes Alb.exe - 323,072 bytes Edtsrv.exe - 158,208 bytes Edtsrv.exe - 181,248 bytes Server.exe - 178,178 bytes Server.exe - 482,822 bytes Winregse.exe - Scandisk.exe - Scan.dll - 6,144 bytes Help.exe - - 182,998 bytes
Created:
Requires:
Actions: Anti-protection trojan / Remote Access / Keylogger / Steals passwords / Port scanner
Registers: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectX
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\
Notes: Works on Windows 95, 98, ME, NT, 2000 and XP.
Country: written in Russia
Program: Written in Delphi.

© Copyright von Braun Consultants. This information may include technical inaccuracies or typographical errors. If you have any questions or further information about the actual trojan above, please contact Joakim von Braun at <joakim.von.braun@risab.se>