| Port No | 25 |
| Service Name | Email Password Sender |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | Email Password Sender 1.03 is a early version of a fairly wide spread trojan. All it does is send the cached passwords to a pre set email. The big thing about it is the size and that the whole thing is to be configured. Since it must be configured each infection could be different and difficult to remove. Our version did crash upon running. |
| Reference Link | Email Password Sender Trojan |
| Attack | It autoloads the Registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ Key: Anykeyname It does the following : Send cached passwords to email Removal : 1.Remove the Anykeyname key in the registry located at HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run Which can be done with regedit or any other registry editing program. 2. Reboot the computer or close the trojan file listed in the registry. 3. Delete the trojan file listed in the registry. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.