| Port No | 1001 |
| Service Name | Windows Trojan |
| RFC Doc | 0 |
| Protocol | UDP |
| Description | This variant of the Internet Relay Chat (IRC)Script, IRC_GTMINE_INI is dropped by TROJ_GTMINESXF.A, which is a Windows Trojan that uses Internet Relay Chat (mIRC) to compromise the security of an infected user's Personal Computer (PC). The Trojan sets up various network services such as file servers, IRC bouncers/spoofers, port scanners, and ICQ flooders. |
| Reference Link | Windows Trojan |
| Attack | INFORMATION : This variant of IRC_GTMINE_INI is dropped by TROJ_GTMINESXF.A, a Windows Trojan that uses mIRC to compromise the security of an infected user’s PC. The Trojan sets up various network services like file servers, IRC bouncers/spoofers, port scanners, and ICQ flooders. File servers enable unauthorized users to download and view all files in an infected user’s PC from a remote location. The Trojan author utilizes an infected user’s IP address to avoid being detected. The author can also use the infected user’s PC as a port scanner to scan IP subnets for open ports and use ICQ flooders to send unsolicited ICQ messages to a specified ICQ Number. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.