GregStar Trojan 2.3
(Backdoor.Win32.Pazus.22)
(Backdoor.Win32.HacDef.dv for Server)

by gregstar

Written in Delphi

Released in December 2005

more versions 




Server:
Dropped Files:
c:\WINDOWS\includesys.inx    Size: 146 bytes 
c:\WINDOWS\runt.bat          Size: 146 bytes 
c:\WINDOWS\shell.exe         Size: 689,140 bytes 

Startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run "WinShell"
data: C:\WINDOWS\shell.exe 


Tested on Windows XP
December 31, 2005
MegaSecurity