A-311 Death 1.29

A-311 Death 1.29
(Backdoor.Win32.Haxdoor.q)
(Backdoor.Win32.Haxdoor.s for Server)

by Corpse

Written in MASM

Released in May 2004

Made in Russia


Server:
size: 38.336 bytes

port: 16661 TCP

dropped files:
c:\WINDOWS\SYSTEM\klogini.dll   size: 0 bytes 
c:\WINDOWS\SYSTEM\p2.ini        size: 320 bytes 
c:\WINDOWS\SYSTEM\ps.a3d        size: 180 bytes

registry keys added:
HKEY_CURRENT_USER\Identities\{50D6AEE0-8FBC-11D8-B7B6-0003FF7D167E}\Software\Microsoft\Internet Account Manager\Accounts 
HKEY_LOCAL_MACHINE\Software\Microsoft\Protected Storage System Provider\*Default*\Data 2\Windows 
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\MPRServices\TestService

MegaSecurity