by Shukisnike
Written in Delphi
Released in April 2005
Server: dropped files: c:\WINDOWS\system32\EXPL0RER.EXE Size: 45,656 bytes c:\WINDOWS\system32\Sat_Apr_23_2005.txt Size: 236 bytes c:\WINDOWS\system32\SP00LSV.EXE Size: 45,656 bytes port: 800, 25555 TCP startup: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "EXPLORER" data: EXPL0RER.EXE tested on Windows XP April 23, 2005MegaSecurity