Welcome to the Virus Encyclopedia of Panda Security.
It steals all type of passwords, which are obtained from email clients, the Windows Protected Storage and the Internet Explorer feature Autocomplete. It receives remote control orders through which it could download and run more malware in the affected computer.
|First detected on:||Aug. 30, 2007|
|Detection updated on:||Aug. 30, 2007|
|Yes, using TruPrevent Technologies
IRCPass.A is a backdoor that steals all type of passwords, which are obtained from the following resources:
- email clients, such as Outlook and Opera.
- the Windows Protected Storage.
- the Internet Explorer feature Autocomplete.
Additionally, it receives remote control orders through which any file could be downloaded and run. This implies that more malware could affect the computer and carry out other malicious actions.
On the other hand, it uses several techniques in order to go unnoticed and make its detection more difficult.
IRCPass.A does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, email messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.
IRCPass.A is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.