|
|
Blue Eye IRC Bot V 2.0 Backdoor Information
| Name: |
Blue Eye IRC Bot V 2.0 |
| Category: |
Backdoor |
| Alias: |
- Alias: Karia's Registry Loader |
| Advice: |
Remove |
| Risk: |
Elevated Risk
Elevated threats are usually threats that fall into the range of adware in which data about a user's habits are tracked and sent back to a server for analysis without your consent or knowledge. |
| Description:
|
IRC backdoor
Features: No Process Visible inject into explorer.exe and exiting, Active Setup Startup, Sniffer for finding FTP & other botnets passwords, Custom packeting syn,udp,ping ddos, socks 4 Server, Protected storage & cashed passwords
|
| Signatures:
|
process: bluebot.exe: MD5 Hash: 1a491908172cf4457ac...
process: mscidaemon.exe: MD5 Hash: 1a491908172cf4457ac.. |
| Type: |
Backdoor - Anything (other than a document) not in another category, perhaps because it falls into mulitple categories, such as a tool suite. |
Top Backdoor Visited Pages:
Unicorn - 168 visits
SkatanBot - Alias: Backdoor.VB.kl - 91 visits
Backdoor:Win32/Lamebot.A - 82 visits
Delf.gb - Alias: RVP - 62 visits
BackDoor.Galapop.A - Alias: Trojan.Abwiz.D (Symantec), Galapoper (Mcafee) - 60 visits
Trojan.Backdoor.Darkmoon - Alias: Backdoor:Win32/Darkmoon.AZ - 54 visits
Trojan.Fakespy.A - Alias: Trojan.Zlob.B - 52 visits
Trojan.Backdoor.Codbot.O - Alias: W32/Codbot-O, Backdoor.Win32.Codbot.ah - 51 visits
RBot.sysdat - Alias: Backdoor:Win32/Rbot!E89C - 51 visits
Backdoor.Perl.AEI.16 - 50 visits
Random Backdoor Pages:
Genocide.a
Win32/Rbot.MC
IRC.Cloner.p
Tiny Shell - Alias: Backdoor.Shell
Tro.KVM.Installer
BAT.Comlabat.04
Mtexer.10
Backdoor.Win32.Assasin.10.a
ASP.Ace.f
IRC.Shiznat - Alias: Karia's Registry Loader
|
|
