by Axlito
Made in Argentina
Server:
dropped file:
C:\WINDOWS\SYSTEM\RUNDLL.EXE
size: 218 KB
port: 31320 TCP
31320 UDP
startup:
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
HKLM\Software\Microsoft\Windows\Currentversion\explorer
MegaSecurity