by ?
Written in Microsoft Visual C++, compressed with FSG
dropped file: c:\WINDOWS\system32\smsc.exe size: 122.704 bytes port: 13806, 13561 TCP added to registry: HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run "Win32 USB2 Driver" data: smsc.exe HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce "Win32 USB2 Driver" data: smsc.exe HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run "Win32 USB2 Driver" data: smsc.exe HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce "Win32 USB2 Driver" data: smsc.exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Win32 USB2 Driver" data: smsc.exe HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce "Win32 USB2 Driver" data: smsc.exe HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Win32 USB2 Driver" data: smsc.exe HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce "Win32 USB2 Driver" data: smsc.exe HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices "Win32 USB2 Driver" data: smsc.exe HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_MICROSOFT_CONFIG\0000\Control HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Microsoft Config HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Microsoft Config\Enum HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Microsoft Config\Security HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MICROSOFT_CONFIG HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MICROSOFT_CONFIG\0000 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MICROSOFT_CONFIG\0000\Control HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Microsoft Config HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Microsoft Config\Enum HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Microsoft Config\Security tested on Windows XP December 26, 2004MegaSecurity