Muou 1.5

Muou 1.5
(Trojan-PSW.Win32.Nilage.mz)

by rrzhh


Server:
dropped files:
c:\WINDOWS\regstry.exe         Size: 30,770 bytes 
c:\WINDOWS\system\sys32.dll    Size: 16,896 bytes 

startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{55DE776C-124F-10E7-0106-080802070301} "StubPath"
data: C:\WINDOWS\regstry.exe 	
	
	
	
	
tested on Windows XP
November 16, 2006

MegaSecurity