F-Secure
Tools
Backdoor:W32/IRCBot
| Name : | Backdoor:W32/IRCBot |
| Detection Names : |
Backdoor,Win32.IRCBot |
| Category: | Malware |
| Type: | Backdoor |
| Platform: | W32 |
Summary
A remote administration utility which bypasses normal security mechanisms to secretly control a program, computer or network.
Additional Details
The detection name Backdoor:W32/IRCBot is used to identify a member of a large group of programs that install a backdoor on an infected machine.
The backdoor will then log onto Internet Relay Chat (IRC), the popular instant messaging (IM) system. It may then act as in IRCBot, a type of "bot" that an attacker can control from a modified IRC client.
IRCBots can be used for a variety of malicious actions, such as controlling backdoors or botnets. Backdoors allow a remote attacker to control an infected machine, while botnets can be used to harness a the collective resources of infected machines to perform more resource-intensive actions, such as sending out massive quantities of spam or launching major Denial of Service (DoS) attacks.
Examples:
The backdoor will then log onto Internet Relay Chat (IRC), the popular instant messaging (IM) system. It may then act as in IRCBot, a type of "bot" that an attacker can control from a modified IRC client.
IRCBots can be used for a variety of malicious actions, such as controlling backdoors or botnets. Backdoors allow a remote attacker to control an infected machine, while botnets can be used to harness a the collective resources of infected machines to perform more resource-intensive actions, such as sending out massive quantities of spam or launching major Denial of Service (DoS) attacks.
Examples: