Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
TROJAN:MISC:SCHOOLBUS-JOYBD |
|---|---|
Severity |
Warning |
Recommended |
No |
Category |
TROJAN |
Keywords |
School Bus Backdoor |
Release Date |
2004/10/06 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
TROJAN: School Bus Backdoor
This signature detects commands sent to systems infected with the School Bus backdoor. School Bus, a backdoor Trojan loosely based on the NetBus Trojan, can delete Windows system files and send system information to the attacker controlling the Trojan.
Extended Description
School Bus is a Trojan horse with backdoor capability. It enables remote attackers to gain control over an affected machine. Some of the remote commands supported by School Bus are quite dangerous, such as File manager, Get system passwords, Get cached passwords, and Crash Windows.
References