by prncipia
Released in April 2006
Genie is a simple Telnet backdoor program. -When Genie.exe executed, it opens port on 1179. -Creates a copy of itself as %System%\regmont.exe and %windir%\cprog.exe -And adds the follow values in the registry to be executed each time Windows starts. "HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run" "RegMon" = " %System%\regmont.exe" "HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows" "Run" = "%windir%\cprog.exe" Genie commands: Mypass Change default passowrd Myport Change defult port Reload Reload genie-new settings Lock locking Taskman and registry editors (win2k/xp) UnLock Unlocking Taskman and registry editors (win2k/xp) Fdownload Download files from sites cdopen Opens CD port cdclose Close CD port Reset Reboot windows. Exit Close current connection. Vshutdown Shutdown the virus. prncipia tested on Windows XP February 26, 2007MegaSecurity