Welcome to the Virus Encyclopedia of Panda Security.
|Alias:||Multidropper-CE, Backdoor.Welkom, TrojanDropper.Win32.Small.aa|
|Effects: ||It connects to an IRC chat channel and allows hackers to access the affected computer.|
|First detected on:||Jan. 31, 2003|
|Detection updated on:||Feb. 23, 2005|
Sadhound is a dangerous Trojan, as it allows a remote user to access the affected computer. It does this by connecting to a specific channel of the IRC chat program.
Sadhound does not use any specific means to spread. It can reach computers through the usual means used by viruses: floppy disks, CD-ROMs, e-mail messages with infected attachments, Internet downloads, FTP, etc. Sadhound is sometimes dropped in affected computers by another Trojan called Juntador.
Sadhound can reach computers through two different ways:
In an infected file. In this case, it does not give any indication that it has reached an infected computer.
However, it can also be dropped by another Trojan called Juntador. In this case, it is very easy to identify as it displays the following text in a window belonging to the program Notepad:
this to you,
I was feeling
a little lonely,
and when I asked myself
what I seemed to be
missing the most,
turned out to be
I Miss You