by chengjingtao
Written in Delphi
Released in December 2000
Made in China
Server:
dropped file:
C:\WINDOWS\SYSTEM\RUNWINVXD.EXE
size:
351.744 bytes (win9x)
347.648 bytes (win2000)
port: 1122, 7788, 1415, 2000 TCP
1122, 7788 UDP
startup:
c:\windows\system.ini
HKEY_CLASSES_ROOT\txtfile\shell\open\command
Platform: Win98 and Win2000
MegaSecurity