yes I have but cannot place the package name, but it was basicly the dameware with the forms edited out and no icon .. ( why i dont know the .ini provides forr everything ) it was a standalone exe not intregrated into or used as a base trojan but part of a package along the lines of gg.bat ( netbois type auto hacking kits ). I have seen another instance of a webcam package usesd because it offered remote / ( webroot ) based browsing after infection.. BTW Dameware makes an exelent base for a fairly stealth package as its not picked up by most AV systems. morning_wood http://exploitlabs.com ----- Original Message ----- From: "John" <johnccostaat_private> To: <incidentsat_private> Sent: Wednesday, June 04, 2003 11:31 AM Subject: Dameware Malcode? Is anyone aware of it? > > > Is anyone aware of the existence of Dameware malcode that makes use of > Damaware mini-remote control to provide an attacker with backdoor access > to systems? > Thanks > John > > -------------------------------------------------------------------------- -- > -------------------------------------------------------------------------- -- > > ---------------------------------------------------------------------------- ----------------------------------------------------------------------------
This archive was generated by hypermail 2b30 : Fri Jun 06 2003 - 08:35:11 PDT