Author Topic: New dangerous "BEAST trojan 2.05" on the loose !  (Read 5123 times)

0 Members and 1 Guest are viewing this topic.

Offline Waldo

  • Sr. Member
  • ****
  • Posts: 397
  • Avast does the ownage
New dangerous "BEAST trojan 2.05" on the loose !
« on: December 10, 2003, 06:18:02 PM »
Read it all here !

http://www.dslreports.com/forum/remark,8741674~mode=flat

http://www.nsclean.com/psc-bst.html

seems like real nasty to me !

I downloaded it (the trojan), and at this moment E-trust promo and avast 4 and The Cleaner don't detect it.

Gmt+1  18.20 u 12/10/03

the total amount of downloads of this trojan are very impresive  :(

Waldo
« Last Edit: December 10, 2003, 07:32:28 PM by Waldo »
**Guns are for show, knifes for a pro**

Offline Waldo

  • Sr. Member
  • ****
  • Posts: 397
  • Avast does the ownage
Re:New dangerous "BEAST trojan 2.05" on the loose !
« Reply #1 on: December 10, 2003, 07:27:43 PM »
The cleaner 3.5 & 4.0 detects it now : GMT+1  19u25   12/10/03

Signature Database : 3424

Waldo
« Last Edit: December 10, 2003, 07:29:16 PM by Waldo »
**Guns are for show, knifes for a pro**

Offline Waldo

  • Sr. Member
  • ****
  • Posts: 397
  • Avast does the ownage
Re:New dangerous "BEAST trojan 2.05" on the loose !
« Reply #2 on: December 11, 2003, 05:19:08 PM »
E-trust 7 promo detects it now also (server + client)

http://www3.ca.com/support/vicdownload/NewlyDetectedList.aspx?CID=49722


Waldo
« Last Edit: December 11, 2003, 05:21:04 PM by Waldo »
**Guns are for show, knifes for a pro**

Offline Godzilla

  • Newbie
  • *
  • Posts: 8
  • I'm a llama!
Re:New dangerous "BEAST trojan 2.05" on the loose !
« Reply #3 on: December 11, 2003, 05:32:54 PM »
May i ask what should be so damn interested on this backdoor ?
Because he makes code injection into other processes ?

This backdoor is nothing else than a backdoor. Programmed in Delphi and praysed at DSLR to be very "dangerous".

Offline Waldo

  • Sr. Member
  • ****
  • Posts: 397
  • Avast does the ownage
Re:New dangerous "BEAST trojan 2.05" on the loose !
« Reply #4 on: December 11, 2003, 05:57:30 PM »
May i ask what should be so damn interested on this backdoor ?
Because he makes code injection into other processes ?

This backdoor is nothing else than a backdoor. Programmed in Delphi and praysed at DSLR to be very "dangerous".


Offcourse you may ask.

I know code injection is nothing new, but it seems this trojan "perfected" it somehow.

Sure, the post at Dsl is getting rubbish, its purpose was ment otherwise.

sad to see how things get out of hand sometimes. :(

Please, Godzilla (Xor) why don't you, as a security expert tell us simply ; do whe need to worry or not ?

Waldo

**Guns are for show, knifes for a pro**