Trojans- The Mode Of Operation


Trojans- The Mode Of Operation

Trojans- The Mode Of Operation

Last time we saw the different ways one can be infected by a trojan. Now I can safely assume that reading my previous articles, you have become quite net-literate and can take some techie terms.Today, we will look into the working of a trojan horse.

Most of the new trojans has options that when the victim run the server it will e-mail you back their IP and other information.It will e-mail it to every e-mail you want using their SMTP server. Now you should make the victim run the server you can tell that it's some kind of program or something else use your imagination.Then when you have their IP just write it down in the client click "Connect" button and then you can what you want on their computer of course with the options that the trojan has.

Each trojan has it's own set of functions, or abilities. Some of them are mentioned below.

Almost every trojan out now has the ability to use a file manager. When they run this, the user will be able to view/delete/move/upload/download/execute any file off your hard drive(s).The file manager ability can be very dangerous. It lets the user able to upload any type of file, virii, other trojans, etc, and then RUN them. There are also many other dangerous abilities that these trojans possess. Some just feature a button that will let you simply format the victim's C:/ drive, which would totally erase their hard drive. Other dangerous functions include being able to start a FTP server on the victim's hard drive, and setting a designated port so anyone could download/upload/execute files on your pc.

Most new trojans have the ability to steal your list of cached passwords, and even your dailup account password and user name. Another very malicious ability is that for example Sub Seven, has a feature to allow you to modify the startup registry info. That can be very dangerous to your computer. Then they usually have less dangerous abilities, such as hide mouse, control mouse, restart windows, send to URL, show picture, notepad flood, etc. These aren't very harmful, but can be very annoying, and scary to someone who has no clue what is happening to him/her.

We can now take a look into the actual working of a Trojan horse.

When the victim runs the server it does functions like opening some specific port and listening for connections.It can use TCP or UPD protocols. When you connect with the victim IP then you can do what you want because the server let you do the trojan functions on the infected computer.Some trojans restart every time Windows is loaded. They modify win.ini or system.ini so the trojan can restart but most of the new trojans use the registry so they can restart.

The copyright of the article Trojans- The Mode Of Operation in Internet Security is owned by Mayur Kamat. Permission to republish Trojans- The Mode Of Operation in print or online must be granted by the author in writing.

Go To Page: 1 2

Articles in this Topic    Discussions in this Topic