The UNIX and Linux Forums  

Go Back   The UNIX and Linux Forums > Special Forums > Security > Malware Advisories (RSS)
Bkdr_morf.t Bkdr_morf.t
Google UNIX.COM
Forums Portal Register Forum Rules FAQContribute Members List Arcade Search Today's Posts Mark Forums Read


Malware Advisories (RSS) Malware Security Advisories Via RSS

Reply
 
Submit Tools LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 07-02-2008
iBot's Avatar
RSS Robot Girl
  

Join Date: Sep 2000
Posts: 14,302
Stumble this Post!
Bkdr_morf.t
This backdoor may arrives as a file dropped by other malware. It may also be downloaded unknowingly by a user when visiting malicious Web sites.
Upon execution, this backdoor drops a copy of itself. It registers itself as a system service to ensure its automatic execution at every system startup. It does this by creating registry keys/entries.
This backdoor opens a random port to allow a remote user to connect to the affected system. Once a successful connection is established, the remote user executes commands on the affected system.
This backdoor deletes itself after execution.


More...
Reply With Quote
Google The UNIX and Linux Forums
Forum Sponsor
Reply

« Troj_pidief.ac | Troj_dropper.fcr »
Thread Tools
Display Modes
Linear Mode Linear Mode




All times are GMT -7. The time now is 11:44 AM.

The UNIX and Linux Forums RSS Feeds - Contact Us - The UNIX and Linux Forums - Archive - Top

Powered by: vBulletin, Copyright ©2000 - 2006, Jelsoft Enterprises Limited.
The UNIX and Linux Forums Content Copyright ©1993-2008 The CEP Blog All Rights Reserved -Ad Management by RedTyger Visit The Global Fact Book

Content Relevant URLs by vBSEO 3.2.0