Win32/DoS.OutFlare [Threat Name] go to Threat

Win32/DoS.OutFlare.A [Threat Variant Name]

Category trojan
Size 91136 B
Detection created Feb 05, 2013
Detection database version 7972
Aliases Trojan-Ransom.Win32.Blocker.aome (Kaspersky)
Short description

The trojan serves as a backdoor. It can be controlled remotely.

Installation

When executed, the trojan copies itself into the following location:

  • %appdata%\­%variable%.exe (91136 B)

A string with variable content is used instead of %variable% .

Information stealing

The following information is collected:

  • information about the operating system and system settings

The trojan attempts to send gathered information to a remote machine.

Other information

The trojan acquires data and commands from a remote computer or the Internet.


The trojan connects to the following addresses:

  • 7.vr.lt

The IRC protocol is used.


It may perform the following actions:

  • perform DoS/DDoS attacks
  • download files from a remote computer and/or the Internet
  • run executable files
  • update itself to a newer version

Please enable Javascript to ensure correct displaying of this content and refresh this page.