p2pnet.net News:- Meet Brador, the first backdoor trojan targetted at Pocket PC hand-held devices.

From Russia, with love, for the moment, it only has a taste for ARM-based Pocket PCs running Windows Mobile 2003 (Windows CE 4.2) or later and hasn’t been found in the wild, says F-Secure here, emphasizing, “Brador is a backdoor, not a virus. It will not spread on its own.”

Rather, it copies itself to startup folder, mails the IP address of the PDA to the backdoor author and starts listening commands on a TCP port, says F-Secure: A hacker could then connect back to the PDA via TCP port and control the PDA through the backdoor.

“When run, the Brador will copy itself to WindowsStartUp directory as svchost.exe on the Pocket PC device, so that it will automatically start at each time when device boots,” says F-Secure.

“WinCE.Brador.a is a full-scale malicious program ready to go,” says Eugene Kaspersky, head of anti-virus research at Kaspersky Labs, quoted in New Scientist here.

“Unlike proof-of-concept “malware” [malicious software], Brador has a complete set of destructive functions typical for backdoors.”

Other firms have classified it as a low-level threat.

This entry was posted on Friday, August 6th, 2004 at 4:19 pm and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

HOME

Viewed 1904 times