|
|
 |
| VANEBOT-K Information |
|
|
| Threat Name: VANEBOT-K |
|
|
| W32/Vanebot-K is a worm and IRC backdoor Trojan for the Windows platform.
W32/Vanebot-K attempts to spread via MSN Messenger, by copying itself to remote network shares with weak passwords and by exploiting any of the following vulnerabilities: SRVSVC (MS06-040), Psyme, PNP (MS05-039), ASN.1 (MS04-007).
W32/Vanebot-K runs continuously in the background, providing a backdoor server which allows a remote intruder to gain access and control over the computer via IRC channels. |
More Information |
|
|
|
|
|
| |
|
|
|
| |
Scan for this threat |
|
|
|
|
|
|
BACKDOOR
a means of access to a computer program that bypasses security mechanisms. A programmer may sometimes install a back door so that the program can be accessed for troubleshooting or other purposes, but an attacker may exploit or use a back door to get unauthorized access to information or install spyware.
|
|
|
|
2 Identified Patterns
| EXE Files |
DLL Files |
Other Files |
|
|
|
|
|
|
|
|
|
|
