Home Malware Programs Remote Administration Tools BlueAngel

BlueAngel

Posted: March 28, 2006

This invisible Telnetserver was created to gain unauthorized remote control to the intruder. The author is a hacker called Leonshoh. The virus was written in Visual C++. Several variants appeared in the internet from March 2003 to December 2003. The infection peaked in the United States. It requires 1721 kb space for storage. Originated in China. The interface of the application is written in Chinese.

File System Modifications

  • The following files were created in the system:
    # File Name
    1 [system
    2 blueangel.exe
    3 blueangelv0.1.exe
    4 fileplug.dll
    5 help.chm
    6 krnl.exe
    7 msntc.exe
    8 netcfg.dll
    9 ntfrsprf.exe
    10 ntkrnl.exe
    11 passwordplug.dll
    12 progressplug.dll
    13 readme.1st.txt
    14 readme.txt
    15 readmenow.txt
    16 screen.dll
    17 screenplug.dll
    18 script.dll
    19 svchost.exe
    20 svchost.exe.bak

Related Posts

Loading...