by ?
Written in Delphi, compressed with UPX
Dropped files: c:\WINDOWS\$$33tmp6699.bat Size: 310 bytes c:\WINDOWS\Baksjksj.exe Size: 364,032 bytes port: 1114, 58008 TCP startup: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "LoadOrderVerification" data: C:\WINDOWS\Baksjksj.exe tested on Windows XP September 23, 2005MegaSecurity