Troj_dropper.nak Post: 302201189

Sponsored Content

Special Forums Cybersecurity Malware Advisories (RSS) Troj_dropper.nak Post 302201189 by Linux Bot on Saturday 31st of May 2008 08:30:13 PM

05-31-2008

Registered User

Troj_dropper.nak

This Trojan may be downloaded from remote sites by other malware. It may arrive bundled with malware packages as a malware component. It may be downloaded unknowingly by a user when visiting malicious Web sites.
It creates registry entries to enable its automatic execution at every system startup.
It creates registry key(s)/entry(ies) as part of its installation routine.
It drops component files. It then executes the dropped file(s). As a result, malicious routines of the dropped files are exhibited on the affected system. It injects the dropped files into the following running processes to remain memory resident.
It deletes itself after execution.

More...

Linux Bot

View Public Profile for Linux Bot

Find all posts by Linux Bot

LEARN ABOUT DEBIAN

mirrortool

MIRRORTOOL(1)							OMT documentation.						     MIRRORTOOL(1)

NAME

       mirrortool.pl  -  OpaL Mirror Tool (OMT)

DESCRIPTION

       Creates a mirror of a webpage. It has a number of features such as link rewriting and more. (See the options below).

USAGE

       mirrortool.pl [options] [url] [options] [url] [...]

OPTIONS

	  --images	       : Include <img src=xxx>:s in the download. (default)
	  --noimages	       : Do not include <img src=xxx>:s in the download.
	  --depth n	       : Maximum recursion depth. (default 1)
	  --store "regexp"     : Files matching regexp are actually stored locally.
			       : It is possible to | separate (with or).
	  --rewrite "from=>to" : Urls are rewritten using this rules.
			       : It is possible to | separate (with or).
			       : Do not rewrite the dir, because that it will affect
			       : later lookup. Have to fix this sometime.
	  --what "regexp"      : Files matching regexp are downloaded and traversed.
			       : It is possible to | separate (with or).
	  --dir basedir        : Where to store local files.
	  --nohostcheck        : Do not check if url points to other host.
	  --notreecheck        : Do not check if url points to other dirtree.
	  --force	       : Overwrite all files.
	  --debug	       : Print debug-messages.
	  --retry n	       : Number of times an url will be retried (default 1)
	  --auth user:pass     : use Basic Authentication
	  --proxy url	       : Use a proxy server (like http://u:p@localhost/).
	  --help	       : Print this text.

AUTHOR

       Ola Lundqvist <opal@lysator.liu.se>

SEE ALSO

       mirrortool.pl(1)

perl v5.8.8							    2002-04-15							     MIRRORTOOL(1)