HelmintH 0.1

HelmintH 0.1
(Trojan-Dropper.Win32.Agent.aeuc for Client)
(Trojan-Spy.Win32.VBChuchelo.bb for Server)

by OussamiO

Released in January 2009

Made in Tunisia




Server
Dropped File:
c:\WINDOWS\system32\Exploer.exe
Size: 112,847 bytes 

Startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Winupdate"
Data: C:\WINDOWS\system32\Exploer.exe 



Tested on Windows XP
January 20, 2009

MegaSecurity