Subj : Using BBS to spread trojans
To   : All
From : Jack Troughton
Date : Tue Jun 05 2001 05:13 am

Hi Guys!

Well, this whole FIDO thing is pretty cool...

At any rate, after poking around a bit on Mike Luther's BBS, it would seem to 
me that the easiest way to pass an OS/2 trojan around would be by distributing 
modified installation routines. Since most install routines are written in 
REXX, it would be very easy to add in a bit of code to go get the trojan and 
install it along with the legitamate program. However, it should be pretty easy 
to catch; just grep the install prog for RXFTP (as it would be used to go get 
the trojan) and if found, examine the code to see what it's getting...

Regards,

Jack


--- Maximus/2 3.01
 * Origin: Ziplog Public Port (1:117/3001)

.