This trojan is able to sniff all the traffic of the system and send it to a ftp
server (so you can grab interesting data ...). You can specify in the code the
pcap filter and the ftp account. The trojan needs the winpcap lib installed on
the "victim" system to run. I hope it can be interesting for you.
You can contact me at firstname.lastname@example.org or visit http://vx.netlux.org/wargamevx