Sockets des Troie

Name:	Sockets des Troie
Aliases:	Sockets23, Lame, BACKDOOR.KAMIKAZE, IRC_TROJAN, TROJ_BACKDOOR, W32/Cheval.gen , Backdoor.Sockets23, Control Du Sockets, W32.HLLP.DeTroie, DeTroie.drp,
Ports:	1 (UDP), 5000, 5001, 30303, 50505, 60000, 65000
Files:	Sdt2.3.zip - 855,872 bytes Sockets23.zip - 849,499 bytes Controldusockets.zip - Sockets23.exe - 1,082,880 bytes Genvirus.exe - 779,797 bytes Mschv32.exe - Mgadeskdll.exe - 339,456 bytes Rsrcload.exe - 339,456 bytes Csmctrl32.exe - 339,456 bytes DrvCtrl95.exe - 322,560 bytes Lcv_sys.exe - Discv.dll - Tcv.exe - Dcv.exe - Winstart.bat - Mkopg.exe - Oiht400.dll - Tmp_.exe - - [440 kb]
Created:	Jun 1998
Requires:
Actions:	Remote Access / ICQ trojan / Virus
Registers:	HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
	HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\
	HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices\
	HKEY_CLASSES_ROOT\DirectSocketsDrv\
	HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunLoad\
Notes:	Works on Windows 95 and 98, together with ICQ. Features as telnet and finger.
Country:	written in France
Program:	Written in Delphi 3.

© Copyright von Braun Consultants. This information may include technical inaccuracies or typographical errors. If you have any questions or further information about the actual trojan above, please contact Joakim von Braun at <joakim.von.braun@risab.se>