|
|
2Spy RAT Information
| Name: |
2Spy |
| Category: |
RAT |
| Alias: |
- Alias: Backdoor.NetAdmin.10, Net Administrator 1.0 |
| Advice: |
Remove |
| Risk: |
Severe Risk
Severe threats typically are remotely exploitable vulnerabilities, which can lead to system compromise. Successful exploitation does not normally require any interaction and exploits are in the wild. There exists a high possibility of potential system damage or security flaw. Attacker has complete control over your computer or install new software on your machine. |
| Description:
|
2Spy is an application (RAT) for monitoring, intercepting, and logging system messages on your computer such as keystrokes, mouse clicks, window activations, as well as capturing most of your system activities.
2Spy can log everything a user types and does including the applications used, sites visited on the Internet, email composed, games played, music listened to, and more. It can even log non-character keys. It can silently capture a user’s desktop or active window at various specified intervals and save it as an image onto disk. It will add time stamps to all events and log every caption in the active window title bar, as well as text on all controls. It can stay totally invisible from the user: it is invisible in the task list, in the task bar notification area, and in the system tray. 2Spy saves everything to a log file that can be located in any folder specified by the installer. The log is saved as a standard text file and can be seen or deleted directly from 2Spy. In addition, the log file can be dynamically encrypted and protected unauthorized access to 2Spy with a password.
2Spy is difficult to detect by design. May hide from process list. May install with variable names in variable locations.
|
| Signatures:
|
process: 2spy.exe: MD5 Hash: 28ba3a166298536a5b9...
process: 2spy.exe: MD5 Hash: e5a1a4c5def981b97d0.. |
| Type: |
RAT - A Trojan software is any software on a user's computer that the user is not aware or intentionally installed. Most Trojan software is designed to perform some sort of actions that could jeopardize the user's security or privacy. |
Top RAT Visited Pages:
SubSeven - Alias: BackDoor-G22, BackDoor-Sub7 - 290 visits
NetBus v.1.70 - 206 visits
The Prayer - Alias: BackDoor-DI, Backdoor.Prayer.15 - 75 visits
Cyrex msn trojan - Alias: BackDoor-AOB, Backdoor.VB.dm, Backdoor.VB.dm, Cyrex msn trojan, W32/Delf.B - 69 visits
Global Killer - Alias: Backdoor.GlobalKiller 1.0, Global Killer 1.0 - 54 visits
Systray BackDoor - 52 visits
AutoSpY - Alias: Backdoor.AutoSpy - 47 visits
Secret Agent - Alias: Backdoor.Antinuke.10, Secret Agent 1.0 - 46 visits
Netbus - Alias: Backdoor.Netbus - 41 visits
Undetected - Alias: Backdoor.tds.4f, Backdoor.tds.se.23, Backdoor.tds.se.23a, Backdoor.tds.se.30, Backdoor.TDS.SE.31, Ba - 40 visits
Random RAT Pages:
Broomop
Infexor - Alias: Backdoor.Infexor.b
Tron - Alias: Backdoor.Tron
GirlFriend 1.35
CoolCat
Fredisoft Trojan - Alias: Fredisoft Trojan 1.1
TransScout - Alias: Backdoor.TScout.11, Backdoor.TScout.12, Transmission Scout, TransmissionScout, TransScout
Dizer - Alias: BackDoor-EI, Backdoor.Dizer, Backdoor.Dizer
Ovason
Net Administrator - Alias: Backdoor.NetAdmin.10, Net Administrator 1.0
|
|
