Malware type: Backdoor

Aliases: Backdoor.Win32.Bionet.311 (Kaspersky), BackDoor-FK (McAfee), Backdoor.Trojan (Symantec), BDC/Bionet.311.EdS (Avira), Troj/Bionet-311 (Sophos),

In the wild: No

Destructive: No

Language: English

Platform: Windows

Encrypted: No

Overall risk rating:

A hacker uses this editor program to modify the server component of a backdoor malware. The backdoor malware enables the hacker access to and control over the computer infected with the server program.

For additional information about this threat, see:

Description created: Aug. 15, 2001 1:58:35 PM GMT -0800
Description updated: Mar. 2, 2002 4:07:17 AM GMT -0800


Size of malware: 610,816 Bytes

Initial samples received on: Jun 15, 2001

This is the Bionet Server Builder Editor 3.11a. It allows its user to modify the settings of the server program. It replaces some strings inside the server program file so that the physical file may change. The hacker uses this program to change the following settings of the server program:

  • main port and data port
  • false error message
  • anti- antivirus and firewall ability
  • IRC bot execution
  • password protect server and its settings
  • filename and autostart registry key
  • email address where it sends the keylog
  • CGI notification
  • file joining