Virus Profile: DDoS-Boxed

Threat Search

Virus Profile information details
Risk Assessment:	Home Low \| Corporate Low
Date Discovered:	6/2/2004
Date Added:	6/2/2004
Origin:	Unknown
Length:	varies - approximately 22kb
Type:	Trojan
Subtype:	Win32
DAT Required:	4364
Removal Instructions

Overview
Virus Characteristics
Removal Instructions

Description

This is a trojan detection. Unlike viruses, trojans do not self-replicate. They are spread manually, often under the premise that they are beneficial or wanted. The most common installation methods involve system or security exploitation, and unsuspecting users manually executing unknown programs. Distribution channels include email, malicious or hacked web pages, Internet Relay Chat (IRC), peer-to-peer networks, etc.

Indication of Infection

None

Methods of Infection

N/A

Trojans do not self-replicate. The trojan could have been installed by running an unknown application, by running an application from a website or an attachment to an email that had been spammed out.

Aliases

Trojan.Win32.Boxed (HAURI)

View Virus Characteristics

Virus Characteristics

This trojan is used to attempt a remote denial of service attack against several different websites including Boxedart.com

It installs itself as a service on the local machine, and then spoofs the IP addresses of the requests to Boxedart.com to appear as if they are coming from a different machine.

Back To Overview View Removal Instructions

AVERT recommends to always use latest DATs and engine. This threat will be cleaned if you have this combination.
Additional Windows ME/XP removal considerations