« AntiSpyHunter (Rogue)
Fearless Lite »

Gaobot

No Comments
GoldSparrow By GoldSparrow in Worms | 29 views
Rate it:
1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading ... Loading ...

Gaobot Description

Gaobot is a worm that spreads through several methods such as open network shares, backdoors in which the Beagle and Mydoom worms install, and the following Windows vulnerabilities:

DCOM RPC Vulnerability (described in Microsoft Security Bulletin MS03-026) using TCP port 135.

Workstation Service Buffer Overrun Vulnerability (described in Microsoft Security Bulletin MS03-049) using TCP port 445. Windows XP users are protected against this vulnerability if Microsoft Security Bulletin MS03-043 has been applied. Windows 2000 users must apply MS03-049.

Exploitation of Microsoft Windows Local Security Authority Service Remote Buffer Overflow (described in Microsoft Security Bulletin MS04-011).

The Gaobot worm maliciously attempts to block security programs on the users PC. Gaobot also has the ability to attack other systems by acting as a backdoor server program.

Type: Worms

Automatic Detection of Gaobot

 
 

Download SpyHunter’s Detection Scanner
to Detect Gaobot.

 
 

Gaobot Technical Report

As new Gaobot details are reported by our customers and findings from our Threat Research Center, we will update this section.

The following Gaobot files with its MD5s were created in the system:

File Name File Size MD5
explore.exe 9728 0007deb0315ac62b81f3eb10d71166ba

Important Article Disclaimer

article disclaimer
ESG Support Center

Share and Enjoy: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Furl
  • StumbleUpon
  • Technorati
  • YahooMyWeb
This entry was posted on 08/23/08 and is filed under Worms. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Comment

Note: Abusive comments are not allowed. Please do not post comments regarding technical support issues. ESG customers that have issues with SpyHunter should open a customer support ticket.

*
To prove you're a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.
Click to hear an audio file of the anti-spam word

Top Malware

Recommended Products

Featured Videos

Poll

How much money have you spent trying to rid your PC of spyware?
View Results

Recent Articles

Top FAQs


Archives

Home Sitemap RSS Feed Privacy Policy End User License Agreement Copyright 2003-2009. Enigma Software Group USA, LLC. All Rights Reserved.