.: CMD BackDoor 1.0 :.
Released 18 years, 8 months ago. Nov 2002
By Lion::actions
Additional Details
- From: China
- Coded by: Lion
- Version: CMD BackDoor 1.0
- Released date: Nov 2002, 18 years, 8 months ago.
- Family: CMD BackDoor 1.0
- Category: Information Stealer
MegaSecurity Notes
Trojan.PSW.LionDumper is a Trojan horse that tries to steal passwords. It adds a new user, who has administrator rights, to the system. The Trojan comes disguised as a Windows NT/2000 password dumper utility. (A password dumper is a tool that is used by hackers.) The Trojan functions only if the user who executed it has administrator rights. It tries to add a new user with the name ISUR_IWAM, add it to Local Administrators group, and set a default password for it. (Symantec) added: c:\WINNT\Passwd.txt
URL's and mails were automatically redacted (filtered) for reader's safety. However the filter is not perfect and can't find all harmful elements. If you find something dangerous including file link, website, mail address, profanity... contact me immediately at sub7crew@protonmail.com, thank you in advance.