Tobecho.A is a worm that opens a port in the affected computer, and listens to it, acting as a backdoor. This worm receives remote control commands, such as restarting the system, downloading files, stealing information in the affected computer, etc.
Tobecho.A installs two password stealer type Trojans.
In addition to this, this worm prevents the user from connecting to some web pages, which belong to antivirus and security companies. It also ends some processes, such as several variants of the worms Netsky, Bagle and Blaster.
Finally, Tobecho.A modifies the settings of the affected computer, preventing users from running the Windows Registry Editor and disabling remote administration of the computer.
Tobecho.A spreads via e-mail and the instant messaging program MSN Messenger.