This Trojan variant installs itself as "wuanclt.exe" in the Windows System folder after spreading through a network share. It exploits a number of well-documented Windows vulnerabilities and allows backdoor access via IRC. It allows others to access the computer, steals information, reduces system security, records keystrokes , installs itself in the Registry, exploits system or software vulnerabilities. Sophos rates it as moderate prevalence.

For more info go to:www.sophos.com

Join the newsletter!

Error: Please check your email address.

More about CGISophos

Show Comments