Home / malwarePDF  

Trojan.Peed.OO


First posted on 21 November 2011.
Source: BitDefender

Aliases :

There are no other names known for Trojan.Peed.OO.

Explanation :

When executed, Trojan.Peed.OO creates and executes a rootkit component, detected as Trojan.Peed.HUJ .
The rootkit injects the backdoor component into the services.exe process, hides itself and the trojan's internet activity and disables the windows firewall service.
The backdoor component, detected as Trojan.Peed.HUJ, connects to remote computers, which are listed in an encripted form in the file %sysdir%windev-peers.ini. The backdoor is used for spamming, harvesting email addresses and for downloading and executing other malicious programs.

Last update 21 November 2011

 

TOP