Troj/Dulldoor-A is a backdoor Trojan which allows a remote intruder to gain access to and control over the computer.
Troj/Dulldoor-A will provide a backdoor command shell over the default port of 2005.
When first run, Troj/Dulldoor-A copies itself to <Windows system folder>\SystemFile.exe and creates the following file:
<Windows system folder>\Syst$.exe - netcat utility
The following registry entry is created to run Troj/Dulldoor-A on startup:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
SystemFile
<Windows system folder>\SystemFile.exe