NinjaSpy 2002 SE

NinjaSpy 2002 SE
(Trojan-Dropper.Win32.Juntador.c)
(Trojan-Dropper.Win32.Juntador.l for Server)

by NinjaSpy

Written in Delphi

Released in January 2006

Made in Brazil

more versions

error box by server


Client:
dropped files:
c:\WINDOWS\Temp\NST2002SE.exe    Size: 276,992 bytes   (Backdoor.Win32.Antilam.14.i)
c:\WINDOWS\Temp\Scan.exe         Size: 188,928 bytes 




Server:
dropped files:
c:\WINDOWS\Netstat.pif    Size: 194,562 bytes   (Backdoor.Win32.Antilam.11)
c:\WINDOWS\Taskman.bat    Size: 14,338 bytes    (Trojan.Win32.ICQPager.a)
c:\WINDOWS\Wsock32.com    Size: 14,338 bytes    (Trojan.Win32.ICQPager.a)

startup:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Netstat.pif"
data: C:\WINDOWS\Netstat.pif 

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Taskman.bat"
data: C:\WINDOWS\Taskman.bat 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "WindowsSockets"
data: C:\WINDOWS\Wsock32.com

MegaSecurity