ProtG 1.05
(Backdoor.Win32.Agent.oz)
(Backdoor.Win32.Small.hj)

by Gangrel

Written in C++

Released in September 2005

more versions 





Server:
dropped file:
c:\WINDOWS\system32\VideoDrives.exe
size: 44,264 bytes 

port: 8998 TCP

startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "ServTcp"



tested on Windows XP
September 30, 2005
MegaSecurity