by Radon
Written in Visual Basic
Released in May 2006
Made in The Middle East
Server Dropped File: c:\WINDOWS\system32\netcmd.exe Size: 41,003 bytes Startup: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon "Shell" Old data: Explorer.exe New data: explorer.exe netcmd.exe Tested on Windows XP August 23, 2008MegaSecurity