Virus:BDS/Agent.pg
Date discovered:24/10/2005
Type:Backdoor Server
In the wild:No
Reported Infections:Low
Distribution Potential:Low
Damage Potential:Medium
Static file:Yes
File size:2.333 Bytes
MD5 checksum:5f55ff099793d30344c9d1b9952af48d
VDF version:6.32.00.110

 General Method of propagation:
   • No own spreading routine


Alias:
   •  Symantec: W32.Looksky.A@mm
   •  Kaspersky: Backdoor.Win32.Agent.pg
   •  TrendMicro: BKDR_AGENT.DG


Platforms / OS:
   • Windows 95
   • Windows 98
   • Windows 98 SE
   • Windows NT
   • Windows ME
   • Windows 2000
   • Windows XP
   • Windows 2003


Side effects:
   • Third party control

 Backdoor The following port is opened:

%executed file% on TCP port 321 in order to provide backdoor capabilities.

Remote control capabilities:
    • Abort connection
    • Change directory
    • Copy file
    • Delete file
    • Directory listing
    • Display a message
    • Download file
    • Edit file
    • Execute file
    • Move file

 File details Runtime packer:
In order to aggravate detection and reduce size of the file it is packed with the following runtime packer:
   • FSG

Description inserted by Iulia Diaconescu on Tuesday, October 25, 2005
Description updated by Iulia Diaconescu on Friday, November 11, 2005

Back . . . .