Trojan.DOS.Tornado_Patch

Class Trojan
Platform DOS
Description

Technical Details

This “Trojan horse” permits access to command a prompt over Tornado BBS, installed on a “victim” computer. The Trojan searches DOORWAY.CTL and MENUSRUSSIANMAIN.MNU files on hard disks in the Tornado BBS directory. In the first file, The Trojan sets a value of “1” variable “Enter_Security” or
“Shell_Security”; and in the second file, sets a variable “Shell”. After this overpatching by Tornado BBS, anyone can be permitted access to the command prompt and file system “victim” computer.