DTr 1.5 final (f)

DTr 1.5 final (f)
(Backdoor.Win32.DTR.15.d for Client)
(Backdoor.Win32.DTR.f for Server)

by Danil

Compressed with ASPack

Released in Sanuary 2003

Made in Ukrainia


 


Server:
dropped files:
c:\WINDOWS\SYSTEM\nbsystem.exe  size: 12.288 bytes
c:\WINDOWS\SYSTEM\dtrV.dat 
c:\WINDOWS\SYSTEM\DtrVk.dll 
c:\WINDOWS\SYSTEM\nbsystem.dll 

port: 10001 TCP

startup:
HKEY_CLASSES_ROOT\CLSID\{EB5BC279-0C02-4150-8F68-01D872FA896E}\InProcServer32 "(Default)" 
Type: REG_SZ 
Data: nbsystem.dll 
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad "NBSYSTEM" 
Type: REG_SZ 
Data: {EB5BC279-0C02-4150-8F68-01D872FA896E}

MegaSecurity