|
Description:
This worm arrives as dropped by WORM_KELVIR.S.
Upon execution, it drops a copy of itself in the Windows system folder. It modifies the registry to ensure its automatic execution at every Windows startup.
It has backdoor capabilities. It connects to an Internet Relay Chat (IRC) and joins a channel. It opens a random port and listens for commands from a remote user. It executes these commands on the infected system.
It steals CD keys of several popular games.
For additional information about this threat, see:
Solution
Technical Details
Description created: Apr. 15, 2005 7:44:18 PM GMT -0800
Description updated: Apr. 15, 2005 8:18:05 PM GMT -0800
Search a new malware
Tell us how we did. Take our quick survey.
|
Save & Share
