| Port No | 1011 |
| Service Name | Doly Trojan |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | Doly Trojan 1.1 came with a 1.75 megabyte setup.exe file to infect your computer. The setup file installs a Memory manager file but also installs the trojan. However because of the large setup file and the existence of newer versions, this older trojan is rare. Features include a format option, which may or may not work. The server can upload files and then run them, which thereby allows other trojans to be installed. |
| Reference Link | Doly Trojan Trojan |
| Attack | It autoloads the Registry: Registry, startup group, win.ini It does the following : Change computer name Change owner name Change resolution to 640/480 Change the title color on open windows to a random color Change volume to maximum or minimum Close all windows Close server Disconnect server from internet Display fatal error plus customizable message Display FBI screen Hide/show mouse Hide/show task bar Move mouse Open/close cd-rom Open FTP server Remove windows background Run program (visible to user or hidden) Send to URL Set all window names to another name Set systems color Sleep Swap/unswap mouse buttons (Left button becomes right) View running applications |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.