Name: SubZero
Aliases: Backdoor.SubZero,
Ports: 15382 (port can be changed)
Files: - 729,201 bytes Subzero.exe - 435,712 bytes Server.exe - 316,416 bytes Server.exe - 946,176 bytes (?) Taskmann.dll.exe -
Created: Dec 2000
Requires: Icqmapi.dll - is required to run the trojan.
Actions: Remote Access / Keylogger / Steals passwords / DoS tool / ICQ trojan / AIM trojan / MSN trojan
Registers: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\
Notes: Works on Windows 95, 98 and ME, together with ICQ, MS MSN Messenger and AOL´s AIM. The trojan will not be developed any more. Source code will not be released.
Program: Written in Delphi 5.

© Copyright von Braun Consultants. This information may include technical inaccuracies or typographical errors. If you have any questions or further information about the actual trojan above, please contact Joakim von Braun at <>