Hackarmy (d)
(Backdoor.Win32.Hackarmy.d)

by ?

Written in C, compressed with UPX

more versions 


dropped file:
c:\WINDOWS\system32\win33serv.exe
size: 55,840 bytes 

startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Winsock23driver"
data: win33serv.exe 

attempts to connect to an IRC Server


tested on Windows XP
April 19, 2005
MegaSecurity