by ?
Written in Delphi, compressed with UPX
dropped file: c:\WINDOWS\system32\aux.exe size: 64.380 bytes port: 32121 TCP added to registry: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunServices "aux.exe" data: \\?\C:\WINDOWS\System32\aux.exe HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "aux.exe" data: \\?\C:\WINDOWS\System32\aux.exe HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Kernel tested on Windows XP December 24, 2004MegaSecurity