by ?
Written in Delphi, compressed with UPX
dropped files: c:\WINDOWS\system32\HDLL.DLL Size: 167,773 bytes c:\WINDOWS\system32\sms32.exe Size: 387,661 bytes c:\WINDOWS\system32\sms32.INI Size: 10 bytes startup: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "sms32.exe" data: C:\WINDOWS\System32\sms32.exe tested on Windows XP August 06, 2005MegaSecurity