Security Incidents mailing list archives
Re: Dameware Malcode? Is anyone aware of it?
From: "morning_wood" <se_cur_ity () hotmail com>
Date: Thu, 5 Jun 2003 09:43:36 -0700
yes I have but cannot place the package name, but it was basicly the dameware with the forms edited out and no icon .. ( why i dont know the .ini provides forr everything ) it was a standalone exe not intregrated into or used as a base trojan but part of a package along the lines of gg.bat ( netbois type auto hacking kits ). I have seen another instance of a webcam package usesd because it offered remote / ( webroot ) based browsing after infection.. BTW Dameware makes an exelent base for a fairly stealth package as its not picked up by most AV systems. morning_wood http://exploitlabs.com ----- Original Message ----- From: "John" <johnccosta () yahoo ca> To: <incidents () securityfocus com> Sent: Wednesday, June 04, 2003 11:31 AM Subject: Dameware Malcode? Is anyone aware of it?
Is anyone aware of the existence of Dameware malcode that makes use of Damaware mini-remote control to provide an attacker with backdoor access to systems? Thanks John --------------------------------------------------------------------------
--
--------------------------------------------------------------------------
--
---------------------------------------------------------------------------- ----------------------------------------------------------------------------
Current thread:
- Dameware Malcode? Is anyone aware of it? John (Jun 05)
- Re: Dameware Malcode? Is anyone aware of it? morning_wood (Jun 06)
- Re: Dameware Malcode? Is anyone aware of it? John Ives (Jun 06)
- Re: Dameware Malcode? Is anyone aware of it? Nick Jacobsen (Jun 06)
- <Possible follow-ups>
- RE: Dameware Malcode? Is anyone aware of it? Flory D Jeffrey Contractor 59MDSS/MSISI (Jun 06)
- RE: Dameware Malcode? Is anyone aware of it? John Costa (Jun 06)
- RE: Dameware Malcode? Is anyone aware of it? John Costa (Jun 09)