by Niklaus/Ronop Programming and Security Group
Written in Delphi, compressed with UPX
Made in Turkey
dropped files: c:\WINDOWS\system32\taskmgr.exe old size: 128,512 bytes new size: 66,048 bytes c:\WINDOWS\system32\dllcache\taskmgr.exe old size: 128,512 bytes new size: 66,048 bytes c:\WINDOWS\system32\explorer.exe size: 11,776 byte attempts to connect to an IRC Server tested on Windows XP July 09, 2005MegaSecurity