|Detected||Jul 01 2003 22:28 GMT|
|Released||Jul 01 2003 22:28 GMT|
|Published||May 16 2007 12:18 GMT|
This Trojan is designed to conduct DDOS attacks. It is a Windows PE EXE file. The file is 40 960 bytes in size.
When launched, the Trojan displays the console window:
When the program is launched with command line parameters in the format shown below:
<name of executable file><victim's address><number of packets>
the Trojan will start sending the number of packets specified to UDP port 8220 of the computer at the designated address. The packets are 8220 bytes in size.
The interval between each packet being sent is very small, and the program therefore creates intensive network traffic.
The program also provides the option within the command line to point to a file containing a list of addresses for mass mailings.
If your computer does not have an up-to-date antivirus, or does not have an antivirus solution at all, follow the instructions below to delete the malicious program:
This type of malicious program is designed to conduct a DoS attack from an infected computer on a pre-defined address.
Essentially, a DoS attack involves sending numerous requests to the victim machine; this leads to a denial of service if the computer under attack does not have sufficient resources to process all the incoming requests.
In order to conduct a successful DoS attack, malicious users often infect a number of computers with this type of Trojan in advance (for example, as part of a mass spam mailing.) As a result, all the infected computers will attack the victim machine.