Welcome to the Virus Encyclopedia of Panda Security.
It connects to a server to gain remote control of the affected computer. It reaches the computer in an e-mail message, that exploits the vulnerability MS01-028.
|First detected on:||March 30, 2005|
|Detection updated on:||April 1, 2005|
Beliu.A is a backdoor that connects to the website liubei.8866.org in order to accept remote control commands such as download, modify or delete files, run files, end processes, etc.
It uses the port 8080 and the HTTP protocol in order to connect to the server from which it receives the commands. As that port is generally opened, the backdoor can work in networks protected by a firewall.
Beliu.A reaches the computer in a message that includes an attached file that exploits the vulnerability detailed in the Microsoft security bulletin MS01-028 in order to download the backdoor to the computer.
Beliu.A is easy to recognize, as it reaches the computer in an e-mail message with the following characteristics:
MOFCOM IPR Report-English Version!
International IPR Conventions China Acceded to.DOC