by Y2KZERO
Written in Delphi, compressed with UPX
Released in December 2000
Made in China
Server: C:\WINDOWS\SYSTEM\UPDATE.EXE C:\WINDOWS\SYSTEM\SYSSET.EXE size: 266.570 bytes port: 7626 TCP startup: HKLM\Software\Microsoft\Windows\CurrentVersion\Run HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices HKCR\exefile\shell\run\command HKCR\txtfile\shell\open\commandMegaSecurity