CERT Advisory CA-2002-30 - Released source code distributions of the libpcap and tcpdump packages were modified by an intruder and contain a trojan horse which, upon compile time, remote grabs a file from a fixed IP address which it then compiles and runs. The binary then goes to a fixed IP address and gets a one character response which enables the remote machine to trigger the spawning of a shell to the remote machine. The backdoor also explicitly ignores all traffic on port 1963.
e54c4be958885a0de93635a5937a757fMicrosoft Security Advisory MS02-064 - On Windows 2000, the default permissions provide the Everyone group with Full access on the system root folder (typically, C:\). In most cases, the system root is not in the search path. However, under certain conditions - for instance, during logon or when applications are invoked directly from the Windows desktop via Start | Run - it can be, allowing users to make trojans that other users execute.
d8346b72f3f02539a5cfe8cdc2eabd78Vaccine.c is a program which will remove the ELF infecting virus Linux.Jac.8759 from binary files.
67f1299e5fc83c09ab6a02de6117e8cbABFrag claims to be a Linux Kernel ( here. Encrypted with burneye.
4ef317e80a0a1a33db854f7c79ab3558The Complete Trojans Text. Contents:What Is a Trojan Horse,Trojans Today,The Future Of Trojans,Anti-virus Scanners,How You Can Get Infected -From ICQ,From IRC,From attachment,From Physical Access,From Trick,How Dangerous a trojan can be,Different Kinds Of Trojans,Remote Access Trojans,Password Sending Trojans, Keyloggers,Destructive Trojans,FTP Trojans,Who can Infect you?What is the attacker looking for?How trojans work?The Most COmmon Trojan Ports,Anti-trojans software -Log Monitor,PrcView,XNetStatm,AtGuard,Conseal PC Firewall,LockDown2000,TDS.
954cb426cc33cf62528ad5960c3b32c4CERT Advisory CA-2002-28 - Sendmail 8.12.6 was backdoored on September 28, 2002 to include a trojan which executes commands via outbound port 6667 connections.
f6a94b46de29c16173327843a102489eHashDB is a networked md5 hash comparison tool that allows you to automatically check the hashes of any files you download against a master database stored at www.immunitysec.com. This allows you to download source tarballs without worrying that they've been replaced by trojaned ./configure files.
6bac6b8504e5a8d7f6976c1a46d4f55aBypassing firewalls through protocol stenography - You can often bypass firewalls by using trojans that send commands over port 80.
dbfc62d0887c5defc5faa2fa4e884a30Mirc trojan, as described in Microsoft Knowledge Base Article Q328691.
89feb01b256a2b899a8b043c21ee7636The Anomy mail sanitizer is a filter designed to block email-based attacks such as trojans and viruses. It reads an RFC822 or MIME message and removes or renames attachments, truncate unusually long MIME header fields and sanitizes HTML by disabling Javascript and Java. It uses a single-pass pure Perl MIME parser, which can make it both more efficient and more precise than other similar programs and has built-in support for third-party virus scanners.
b69cc9df32c81fb9517c6a63f9713303Subseven v2.2 remote control trojan.
9f8c38b9535f55420c4aca35ad804384[TROJ] Ansi Bomb -> Trojan Converter
bd2f265f717807949ffa2a5a7ec0096d6cd41055a5cf8f6e0171afcceaae1354The Hack Report for February, 1994 A monthly list of potentially dangerous files including hacks, hoaxes, Trojan Horses, and pirated commercial files found posted for download on BBS systems worldwide. SysOps and Users alike may benefit from this report by using it to avoid potentially dangerous files. Compiled by Bill Lambdin
a1a75da6319373773338227bf548875dLogin trojan. Replace /bin/login, and have a
45741f8ab47d8cbb9d6f1c2ad8489488Trojan to snag someones login password.
e0cf19fd7fa07701082ca563b2f5692aA small trojan to get peoples
95852ffc36846a8b57748e602eead2caA small Internet IRc trojan horse.
6669b7e2c6b33da781f01ae666586e95Trojan to get UNIX passwords. Must be run from
8767b97bbafa19d8e7744a080013361aANSI.SYS bomb
34e8097c13d1ace5d8149571fcb02da1ansi.sys bombs.
393a9174844e48048b4c29078250a01eDestrictive trojan that screws over files on HD.
2eb14f7336ed0efe9d85e34cca5aa6fbTrojan that looks like an innocent HD checker.
58409488c820771a0d78663d4698cbd8Some sort of Trojan...
772d5aa43be1e34e308c7dba3dfea03aKills the FAT. Simple but effective.
b9d7a8f498b78defc06aaae1a3af4b87
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed