PHP/PhpSpy [Threat Name] go to Threat

PHP/PhpSpy.A [Threat Variant Name]

Category trojan
Size 66598 B
Detection created Jan 28, 2010
Detection database version 4815
Aliases Backdoor:PHP/Seqangle.A (Microsoft)
  PHP/BackDoor.AG.trojan (AVG)
  PHP/Shell.AT (Avira)
Short description

The trojan serves as a backdoor. It can be controlled remotely.

Installation

The trojan does not create any copies of itself.

Other information

The trojan serves as a backdoor. It can be controlled remotely. The HTTP protocol is used.


It can execute the following operations:

  • download files from a remote computer and/or the Internet
  • send files to a remote computer
  • create folders
  • delete folders
  • create files
  • delete files
  • move files
  • set file attributes
  • execute SQL commands
  • execute shell commands
  • sending various information about the infected computer

The trojan may create the following files:

  • angel_bc (541 B)
  • angel_bc.c (658 B)

Some examples follow.

Please enable Javascript to ensure correct displaying of this content and refresh this page.