Kraimer 1.1 - Malware Gallery

Informations

Author	icarus
Family	Kraimer
Category	Remote Access
Version	Kraimer 1.1
Released Date	May 2002, 22 years, 6 months ago.
Language	Visual Basic

Additional Information

Server:
c:\WINDOWS\All Users\Start Menu\Programs\StartUp\Office.exe 

size: 100 KB

port: 6668 TCP

startup:
c:\WINDOWS\All Users\Start Menu\Programs\StartUp

Added:
c:\Command.exe 
c:\autoexec.bac

Author Information / Description

==KrAIMer 1.1==
By icarus

What IT Is:
-----------
KrAIMer is a backdoor. It alows you to connect to somone and view their keystrokes,
passwords, and even the date and time. It also allows you to reboot their computer.
The server listens on port 6668. There is no client.
The only other program you need is a terminal, such as telnet.

Special Features:
-----------------
KrAIMer has several features that allow you to get the victims IP.
First of all, every 60 seconds, it sends their IP into a chatroom. 
If they arent in chat, invite them into one!
The second feature is that whenever KrAIMer detects the word "kraimer" in an IM,
it sends their IP to myself and an associate. (I guess that doesnt help you much)

How To Use IT:
--------------
Of course you have to send the program to the victim first. Then they have to run it.
After that, KrAIMer will stay on their computer indefinitely.
First, you gotta open telnet (Or other terminal prog).
Then, you connect to your victim on port 6668. The rest is self explanitory.

Stuff You'll Forget:
--------------------
KrAIMer listens on port 6668

Whats New:
----------
>:I added a start and stop keylogger feature.
>:The menu was redisigned and is more efficient.
>:Character echo.
>:The time/date functions have been combined into 1 function.
>:The "Help" command is easier to access.