Mybr 3.95 GBK

Mybr 3.95 GBK
(Trojan.Win32.Delf.aaq)
(Backdoor.Win32.Hupigon.goc)

by ?

Written in Delphi

Released in April 2007

Made in China


Server
dropped file:
c:\WINDOWS\system32\syst.dll
size: 251,904 bytes 

added to registry:
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETCONTROL\0000\Control
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\netcontrol
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\C
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETCONTROL\0000\Control
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\netcontrol





tested on Windows XP
April 13, 2007

MegaSecurity