Ramirez Trojan 2.0 alfa

Ramirez Trojan 2.0 alfa
(Backdoor.Win32.Ramzdor.20 for Client)
(Backdoor.Win32.Ramzdor.11 for Sserver)

by Black Ice TEAM

Written in Delphi

Released in April 2004

Made in Poland


Server:
size: 858.624 bytes

port: 2323, 3232, 1988 TCP

startup:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "SCANDISC"

dropped file:
c:\WINDOWS\scanlog.ini 
size: 19 bytes

MegaSecurity