by Gutman
Written in Delphi, compressed with UPX
Made in Israel
dropped files: c:\WINDOWS\hs1v.dat Size: 35 bytes c:\WINDOWS\winconf.exe Size: 358,400 bytes startup: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "winconf.exe" data: C:\Windows\winconf.exe tested on Windows XP July 09, 2005MegaSecurity