by Gutman
Written in Delphi, compressed with UPX
Made in Israel
dropped files: c:\WINDOWS\inetinfo.exe Size: 369,664 bytes c:\WINDOWS\svchost.exe Size: 369,664 bytes startup: HKEY_CURRENT_USER\Software\Microsoft\Windows\ShellNoRoam\MUICache "C:\WINDOWS\svchost.exe" data: svchost HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "svchost" data: C:\WINDOWS\svchost.exe attempts to connect to an IRC Server tested on Windows XP July 09, 2005MegaSecurity