Kristian Hermansen wrote:
> I think I've seen this one before. Some keywords that come to mind are APRE
> (Advanced Port Redirection Engine), Assassin 2.0, and the site that hosts
> those files (forget the name). These guys code Trojans for $$$!!! But they
> also offer free tools to make Trojans
Not sure if this is it, but similar idea:
http://www.lommage.co.uk/index.php?view=lompolyinject/lompolyinject
And I found the website where you can purchase Trojans and
components:
http://www.evileyesoftware.com/
Kristian Hermansen
re1.0.html
Trojans for $$$ website: ?
Kris Hermansen
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jarkko
Turkulainen
Sent: Sunday, November 23, 2003 9:32 AM
To: [EMAIL PROTECTED]
Subject: [Full-Disclosure] New backdoor program in the wild
I just fo
I just found a new backdoor program in the wild. It is a reverse backdoor
that uses udp port 53 to communicate with the server side. It uses a
couple of interesting techniques, for example, it injects itself in hidden
IE instance.
I wrote a little paper about the analysis:
http://www.klake.org/~