by ?
Written in Delphi, compressed with UPX
Released in April 2002
Made in China
Client:
port: 81, 82, 88, 90, 133, 178, 998, 1001, 10002, 34463, 55178 TCP
Server:
c:\WINDOWS\SYSTEM\notPad.exe
size: 224.256 bytes
startup:
HKEY_CLASSES_ROOT\vc++\Shell\Open\Command "(Default)"
added registry keys:
HKEY_CLASSES_ROOT\vc++
HKEY_CLASSES_ROOT\vc++\DefaultIcon
HKEY_CLASSES_ROOT\vc++\Shell
HKEY_CLASSES_ROOT\vc++\Shell\Open
HKEY_CLASSES_ROOT\vc++\Shell\Open\Command
MegaSecurity