|
Description:
This new AGOBOT worm is unlike its earlier variants, which exploits known vulnerabilities in order to propagate on the network. However, it has the some similar functionalities as the older AGOBOT worms, such as propagation via the network shares, flooding routine and stealing system information, such as CD keys of popular game applications.
When propagating via the network, it also drops copies of itself on shared folders, which it accesses using a list of passwords that are specified in its body.
It also has backdoor capabilities, which enables a malicious user to execute remote commands on the affected machine.
This malware is compressed using UPX and applied UPX-Scrambler RC1.x. It is compiled using Microsoft Visual C++ and runs on Windows 95, 98, ME, NT, 2000 and XP.
For additional information about this threat, see:
Solution
Technical Details
Description created: Mar. 22, 2004 2:32:12 AM GMT -0800
Search a new malware
Tell us how we did. Take our quick survey.
|
Save & Share
