HaCkEdSs RAT 1.1

HaCkEdSs RAT 1.1
(Backdoor.Win32.VB.bsz)
by HaCkEdSs
Written in Visual Basic
Released in January 2008
Made in Rumania

Server:
Size: 24,576 bytes

Added to Registry:
HKEY_CLASSES_ROOT\CLSID\{03DA8426-CD02-4DF4-BF0C-A39913A8ABE6}\Implemented Categories\{40FC6ED5-2438-11CF-A3DB-080036F12502}
HKEY_CLASSES_ROOT\CLSID\{03DA8426-CD02-4DF4-BF0C-A39913A8ABE6}\ProgID
HKEY_CLASSES_ROOT\CLSID\{03DA8426-CD02-4DF4-BF0C-A39913A8ABE6}\Programmable
HKEY_CLASSES_ROOT\CLSID\{03DA8426-CD02-4DF4-BF0C-A39913A8ABE6}\TypeLib
HKEY_CLASSES_ROOT\CLSID\{03DA8426-CD02-4DF4-BF0C-A39913A8ABE6}\VERSION
HKEY_CLASSES_ROOT\CLSID\{BD06AF2C-B4A3-4622-80B3-3007585BC2FF}\Control
HKEY_CLASSES_ROOT\CLSID\{BD06AF2C-B4A3-4622-80B3-3007585BC2FF}\Implemented Categories\{40FC6ED4-2438-11CF-A3DB-080036F12502}
HKEY_CLASSES_ROOT\CLSID\{BD06AF2C-B4A3-4622-80B3-3007585BC2FF}\InprocServer32
HKEY_CLASSES_ROOT\CLSID\{BD06AF2C-B4A3-4622-80B3-3007585BC2FF}\MiscStatus
HKEY_CLASSES_ROOT\CLSID\{BD06AF2C-B4A3-4622-80B3-3007585BC2FF}\MiscStatus\1
HKEY_CLASSES_ROOT\CLSID\{BD06AF2C-B4A3-4622-80B3-3007585BC2FF}\ProgID
HKEY_CLASSES_ROOT\CLSID\{BD06AF2C-B4A3-4622-80B3-3007585BC2FF}\ToolboxBitmap32
HKEY_CLASSES_ROOT\CLSID\{BD06AF2C-B4A3-4622-80B3-3007585BC2FF}\TypeLib
HKEY_CLASSES_ROOT\CLSID\{BD06AF2C-B4A3-4622-80B3-3007585BC2FF}\VERSION
HKEY_CLASSES_ROOT\Interface\{2EAC5775-4D6F-4E45-89AA-CA515FAD8A4C}\ProxyStubClsid
HKEY_CLASSES_ROOT\Interface\{2EAC5775-4D6F-4E45-89AA-CA515FAD8A4C}\ProxyStubClsid32
HKEY_CLASSES_ROOT\Interface\{2EAC5775-4D6F-4E45-89AA-CA515FAD8A4C}\TypeLib
HKEY_CLASSES_ROOT\Interface\{57AD8332-4B1D-4AF8-8D6D-152BB882CE65}\ProxyStubClsid
HKEY_CLASSES_ROOT\Interface\{57AD8332-4B1D-4AF8-8D6D-152BB882CE65}\ProxyStubClsid32
HKEY_CLASSES_ROOT\Interface\{57AD8332-4B1D-4AF8-8D6D-152BB882CE65}\TypeLib
HKEY_CLASSES_ROOT\Interface\{8CCDD968-E720-486D-8838-65C4107AEDFB}\ProxyStubClsid
HKEY_CLASSES_ROOT\Interface\{8CCDD968-E720-486D-8838-65C4107AEDFB}\ProxyStubClsid32
HKEY_CLASSES_ROOT\Interface\{8CCDD968-E720-486D-8838-65C4107AEDFB}\TypeLib
HKEY_CLASSES_ROOT\NyTrojanOCX.clsExitWindows\Clsid
HKEY_CLASSES_ROOT\NyTrojanOCX.NyTrojan\Clsid
HKEY_CLASSES_ROOT\TypeLib\{6BD45F02-2441-47B5-BC30-15123F1AF043}\1.0\0\win32
HKEY_CLASSES_ROOT\TypeLib\{6BD45F02-2441-47B5-BC30-15123F1AF043}\1.0\FLAGS
HKEY_CLASSES_ROOT\TypeLib\{6BD45F02-2441-47B5-BC30-15123F1AF043}\1.0\HELPDIR
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\wscsvc
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wscsvc



Tested on Windows XP
February 01, 2008
MegaSecurity