Sockets des Troie

Name:	Sockets des Troie
Aliases:	Sockets23, Lame, BACKDOOR.KAMIKAZE, IRC_TROJAN, TROJ_BACKDOOR,W32/Cheval.gen , Backdoor.Sockets23,
Ports:	1 (UDP), 5000, 5001, 30303, 50505, 60000, 65000
Files:	Sdt2.3.zip - 855,872 bytes Sockets23.zip - 849,499 bytes Sockets23.exe - 1,082,880 bytes Genvirus.exe - 779,797 bytes Mschv32.exe - Mgadeskdll.exe - 339,456 bytes Rsrcload.exe - 339,456 bytes Csmctrl32.exe - 339,456 bytes DrvCtrl95.exe - 322,560 bytes Lcv_sys.exe - Discv.dll - Tcv.exe - Dcv.exe - Winstart.bat -
Created:	June 1998
Requires:
Actions:	Remote Access / ICQ trojan
	Sockets des Troie is French for Trojan Sockets and was one of thevery first Remote Access trojans being published.
Versions:	1.0, 1.1, 2.1, 2.2, 2.3, 2.5,
Registers:	HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\HKEY_CLASSES_ROOT\DirectSocketsDrv\HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunLoad\
Notes:	Works on Windows 95 and 98, together with ICQ. Features as telnetand finger.
Country:	written in France
Program:	Written in Delphi 3.

© Copyright von Braun Consultants. This information may include technical inaccuracies or typographical errors. If you have any questions or further information about the actual trojan above, please contact Joakim von Braun at <joakim.von.braun@risab.se>