| Port No | 5889 |
| Service Name | Y3KRAT |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | Backdoor Y3K RAT 1.1 is a Trojan that opens up a backdoor program that, once installed on a system, permits unauthorized users to remotely perform a variety of operations, such as changing the registry, executing commands, starting services, listing files, and uploading or downloading files. Y3K RAT typically runs from the server file "C:\WINDOWS\RundlI.exe" over ports 5882, 5888, and 5889 via TCP. |
| Reference Link | More Inormation |
| Attack | Name:Y3KRAT A Trojan is a program that enables an attacker to get nearly complete control over an infected PC. Frequently used by as a tool by malicious hackers. When this program executes, the program performs a specific set of actions. This usually works toward the goal of allowing the trojan to survive on a system and open up a backdoor |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.