by KOrUPt
Written in C++, Source included
Released in December 2006
Server: dropped files: c:\WINDOWS\Hni.vxd Size: 682 bytes c:\WINDOWS\system32\krnl32.exe Size: 535,529 bytes added to registry: HKEY_CLASSES_ROOT\batfile\shell\open\command "(Default)" data: (data too large: 260 bytes) HKEY_CLASSES_ROOT\comfile\shell\open\command "(Default)" data: (data too large: 260 bytes) HKEY_CLASSES_ROOT\exefile\shell\open\command "(Default)" data: (data too large: 260 bytes) HKEY_CLASSES_ROOT\htafile\Shell\Open\Command "(Default)" data: (data too large: 260 bytes) HKEY_CLASSES_ROOT\piffile\shell\open\command "(Default)" data: (data too large: 260 bytes) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "CoreComponent" data: krnl32.exe tested on Windows XP January 04, 2007MegaSecurity