Hacktool.LsassSba

Risk Level 1: Very Low

Printer Friendly Page

Discovered: April 27, 2004

Updated: February 13, 2007 12:22:06 PM

Also Known As: Bloodhound.Exploit.8

Type: Trojan Horse

Systems Affected: Windows 2000, Windows XP

Hacktool.LsassSba is a hacktool that takes advantage of the LSASS Vulnerability (described in Microsoft Security Bulletin MS04-011) to provide an attacker with a command shell on a remote computer.

Note: Virus definitions dated April 27, 2004 or earlier detect this threat as Bloodhound.Exploit.8.

Protection

Initial Rapid Release version April 27, 2004
Latest Rapid Release version June 22, 2009 revision 066
Initial Daily Certified version April 27, 2004
Latest Daily Certified version June 19, 2009 revision 051
Initial Weekly Certified release date April 28, 2004

Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

Wild Level: Low
Number of Infections: 0 - 49
Number of Sites: 0 - 2
Geographical Distribution: Low
Threat Containment: Easy
Removal: Easy

Damage

Damage Level: Low

Distribution

Distribution Level: Low

Writeup By: Kaoru Hayashi

Technical Details

Search Threats

Search by name

_{Example: W32.Beagle.AG@mm}