Section: .. / trojans /
| /// File Name: |
Subseven.2.2.zip |
Description:
|
Subseven v2.2 remote control trojan.
| | File Size: | 2914238 | | Last Modified: | Sep 6 20:19:12 2002 |
| MD5 Checksum: | 9f8c38b9535f55420c4aca35ad804384 |
|
| /// File Name: |
cain25b11.exe |
Description:
|
Unavailable.
| | File Size: | 1933250 | | Last Modified: | Jul 8 03:27:07 2002 |
| MD5 Checksum: | 3d05b8e3bf0d8833ad20db2c417c1a1b |
|
| /// File Name: |
Itadem-1.01.zip |
Description:
|
Itadem Trojan v1.1 is a small trojan controlled by a web browser.
| | Author: | Itadem | | Changes: | Now supports renaming of server, added some other functions & fixed some bugs. | | File Size: | 63212 | | Last Modified: | Jun 3 02:01:43 2002 |
| MD5 Checksum: | 44f077e0fbadc5465fa48115592d2548 |
|
| /// File Name: |
frapes03b.tar.gz |
Description:
|
Frapes is a Windows backdoor with many features, including the ability to edit the registry. Includes source for a unix client.
| | Author: | George Dissios, Ioannis Houklis | | Homepage: | http://www.frapes.org | | File Size: | 2028300 | | Last Modified: | May 27 04:44:23 2002 |
| MD5 Checksum: | 4d7cb644cfd92f280dbe45b596b92f76 |
|
| /// File Name: |
Itadem.zip |
Description:
|
Itadem Trojan v1.0 is a small trojan controlled by a web browser.
| | Author: | Itadem | | File Size: | 60346 | | Last Modified: | May 1 12:21:26 2002 |
| MD5 Checksum: | dc58c4d6fd7e613e327988fcd42d4754 |
|
| /// File Name: |
WMFA.zip |
Description:
|
This is a Windows(tm) backdoor for ICQ 2001b that was tested on Version 5.18, but I may also work on future versions. This backdoor uses ICQ to indirectly access the internet, so most firewalls can't detect it. It has many features, you can use all of the standard socket functions remotely via this backdoor, you can remotely execute code on the target machine, and two example programs are included. NOTE: To understand this backdoor, you need knowledge of sockets programming and, if you need this feature, you should be familiar with the assembly language. This backdoor isn't thought for script kiddies, but for true programmers to experiment with it. Please do not misuse it!
| | File Size: | 474650 | | Last Modified: | Jan 8 01:36:59 2002 |
| MD5 Checksum: | 0b2c25f6e2e53fd68a70721a519bed34 |
|
| /// File Name: |
hp-ftp |
Description:
|
The hp-ftp trojan pretends to be an exploit created by the Last Stage of Delirium that targets HP-UX FTP servers. Upon executions this file will try to add two new accounts to the password file and will send an email with netstat information to aborted[at]yahoo.com LinuxPir8[at]yahoo.com.
| | File Size: | 14140 | | Last Modified: | Dec 28 15:15:29 2001 |
| MD5 Checksum: | 323f34db83b7d6108a4f23c73d3afb15 |
|
| /// File Name: |
tlibrary.zip |
Description:
|
TDS-2 Trojan Information Database. For Windows.
| | Author: | Dancho | | Homepage: | http://tds.diamondcs.com.au | | File Size: | 252422 | | Last Modified: | Dec 12 21:28:41 2001 |
| MD5 Checksum: | da293c285859aedd75c26d5a3bb04700 |
|
| /// File Name: |
sub7_carbon.sit |
Description:
|
Sub7 client for Mac OS/X.
| | File Size: | 694080 | | Last Modified: | Jul 31 22:15:34 2001 |
| MD5 Checksum: | 48e0d3a8d941e435d752c21a1e1ce234 |
|
| /// File Name: |
sub7_classic.sit |
Description:
|
Macintosh Sub7 client for Mac OS9 and below.
| | File Size: | 612628 | | Last Modified: | Jul 31 21:51:03 2001 |
| MD5 Checksum: | 9ffcad873f536da926c5e6ab185d9df9 |
|
| /// File Name: |
neo-ports.txt |
Description:
|
The NeoHapsis port is a comprehensive list of ports numbers and the services/trojans that run on them. Updated Jul 19, 2001.
| | Homepage: | http://www.neohapsis.com/neolabs/neo-ports | | File Size: | 412198 | | Last Modified: | Jul 19 19:16:12 2001 |
| MD5 Checksum: | 498a55a091404b69a6e2329b30817649 |
|
| /// File Name: |
ra1d.bas.txt |
Description:
|
A beginners introductory model into Cross platform open source trojans. Currently only Win32 code implemented. Written in rapid-q. No longer supported by author.
| | Author: | Digital Vampire | | File Size: | 7460 | | Last Modified: | May 25 18:37:34 2001 |
| MD5 Checksum: | 617c5ddccf4ba142887e7ca8a261c517 |
|
| /// File Name: |
TFAK5.zip |
Description:
|
TFAK v5.0 is a client for 22 remote access trojans, and detects 736 remote access trojans and 9 file joiners. This is the first trojan scanner which is able to find new, unknown trojans.
| | Author: | SnakeByte | | Homepage: | http://www.kryptocrew.de/snakebyte/ | | Changes: | Parts of the code have been switched to ASM, making scanning 3 times faster. Now scans running files with Win NT / 2000. Now lists all windows so you can find windows hidden by vxd's. Now supports German and French. | | File Size: | 194356 | | Last Modified: | Apr 30 15:17:54 2001 |
| MD5 Checksum: | c8e0e5cad9904d5cc6c2c4725fecc0d7 |
|
| /// File Name: |
ks2_10lite.zip |
Description:
|
Khe Sanh is a remote administration tool. Features include: automated search for server in a class C subnet, Explorer-like browsing through directories, local network resources and registry, maintainig subnet list, autoscan and more.
| | Homepage: | http://dive.to/ita | | File Size: | 1163844 | | Last Modified: | Apr 27 21:10:47 2001 |
| MD5 Checksum: | c83bb4810d000741056b1a286be956a4 |
|
| /// File Name: |
exe2vbs.zip |
Description:
|
Exe2vbs encodes an executable file inside vbs script. Includes data compression for smaller output. Includes source (vb6) and exe.
| | Author: | Dzzie | | File Size: | 35531 | | Last Modified: | Mar 26 18:30:23 2001 |
| MD5 Checksum: | ebb8c4fb4f2a28a2e8c4efc064528003 |
|
| /// File Name: |
downloadF_cpp.cpp |
Description:
|
Downloads a file via ftp. Executes it. Removes it. Easy to hide. Easy to bind. C++ source.
| | Author: | Orange Remote | | File Size: | 2193 | | Last Modified: | Mar 15 17:49:38 2001 |
| MD5 Checksum: | f85d446b64da53c47b0442ea7332a369 |
|
| /// File Name: |
asuit-06041.zip |
Description:
|
Aladino is a remote administration tools for w95/98/me/nt/nt2k which includes lots of interesting features such as bouncer multiclient, mini-ftp , key logger , remote shell (command.com expanded to a port), and more. Aladino documentation + Aladino server 0.6 + Aladino client 0.41.
| | Homepage: | http://www.int80h.dhs.org | | File Size: | 73159 | | Last Modified: | Mar 9 13:34:42 2001 |
| MD5 Checksum: | 9bdb9c1504b3b1e377f4e48d8a6317e7 |
|
| /// File Name: |
VB_Script_Exe_Creator.zip |
Description:
|
VB Script Creator takes an executable, and stores it in ascii codes into a vb script. When this vb script is executed, it will create a new exe and execute it. It could be useful but it shows how an executable can live dormant inside a vb script. Windows source included.
| | Author: | Day-Jay | | File Size: | 117944 | | Last Modified: | Feb 26 03:22:00 2001 |
| MD5 Checksum: | 28517a892e018f0e4b5605b3579da567 |
|
| /// File Name: |
Noob4Setup.zip |
Description:
|
Noob 4 is a trojan which uses an IRC connection to control it, therefore bypassing firewalls. Uses ActiveX to install, similar to Godmessage. Victim must be running IE. Warning: Some AV software detects this as noob 3.0.
| | Author: | Shadow | | File Size: | 1932788 | | Last Modified: | Feb 14 01:59:50 2001 |
| MD5 Checksum: | 8b5c9d5cae5d0f8a6efdaf82eda7f2ed |
|
| /// File Name: |
Tfak4_5.zip |
Description:
|
Trojans First Aid Kit v4.5 is a client for 25 remote access trojans, which can detect and remove 481 remote access trojans.
| | Author: | SnakeByte | | Homepage: | http://www.kryptocrew.de/snakebyte/ | | Changes: | Database expanded to 481 trojans, heuristics improved, NT compatibility improved, Added clients for Umuerte, SysMon, and Exploiter. | | File Size: | 2041682 | | Last Modified: | Jan 23 03:21:54 2001 |
| MD5 Checksum: | 44ca066b29b02b9e55b5a47a2cd4e0f4 |
|
| /// File Name: |
mmcrackz.zip |
Description:
|
MMCrack is a Netbus 1.6 client installer. Attempts to avoid AV software.
| | Author: | Eric D | | File Size: | 319883 | | Last Modified: | Nov 29 02:50:28 2000 |
| MD5 Checksum: | 7ff6233189ad79a1bb155e55bd9304a8 |
|
| /// File Name: |
GMW_v0.1.zip |
Description:
|
Godmessage worm is a worm based on Godmessage IV. Untested dangerous code.
| | Author: | Taint | | File Size: | 9167 | | Last Modified: | Oct 28 03:53:29 2000 |
| MD5 Checksum: | 2f111c59d2a8461f940c38325aad1fe2 |
|
| /// File Name: |
godmessageIV.zip |
Description:
|
Godmessage 4 Revision 5 is an implementation of Georgi Guninski's recent ActiveX exploit for Internet Explorer which attempts to install a trojan on any machine which views the included HTML.
| | Author: | The Pull | | Changes: | Revision 5 has all of the rest of the bug updates, plus includes an encrypted version, and denial of service versions (to force the user to reboot and shut down the server). It also includes an important hints section, and generally has been the work of the three developer's and a ton of testers. Warning: Do not view the included HTML files with an unpatched browser if you run Windows. | | File Size: | 15015 | | Last Modified: | Oct 27 04:00:42 2000 |
| MD5 Checksum: | 8e5db743f337d4d85b3f115ab59a48c5 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
