RSS News Feed News Feed XML News Feed

Home

A.P.B.

Designs

Virus

Exploits

Primers

Definitions

Movies

Police Forces

Home > Virus > Trojan Horses > Troj.Zapchas.K

 

Virus Name: Troj.Zapchas.K

Aliases: Troj/Zapchas-K

 

Zapchas is a backdoor Trojan Horse, which allows a remote attacker to gain control over the infected computer via IRC.  Zapchas arrives as an IRC download file with the name of postcard.gif.exe.  And once infected, copies itself as svchost.exe, and script.ini, into the Windows system folder.

Zapchas creates a registry key to run svchost.exe whenever the infected computer connects using IRC, and also creates a registry key to run the same file on re-boot.  Zapchas' main purpose is to steal CD keys, but it can also upload and download files and run programs.  In addition to the registry entries, Zapchas also creates several other files as well.

 

 

Copyright (c) 2005, 2008  A. Ryan Robbins.  All Rights Reserved.

 

 

Google
 
Web ycopfiles.com

 

 

Privacy

Copyright

About

Contact

Site Map

Blog Frog