by stacked_shit
Written in Delphi
Released in June 2003
Server: dropped file: c:\WINDOWS\SYSTEM\kernel32.dlI size: 834.560 bytes port: 3547, 7823, 13173, 17146, 33229, 44280, 44390, 47387, 64429 TCP startup: HKEY_CLASSES_ROOT\.dlI HKEY_CLASSES_ROOT\dlIfile\shell\open\command "(Default)" HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "Kernel"MegaSecurity