Hexy Downloader

Hexy Downloader
(Not detected by KAV on July 25, 2006)

by ?

Released in July 2006


Server:
dropped file:
c:\WINDOWS\system32\plugin1.dat  Size: 51,733 bytes 
c:\WINDOWS\system32\startkey.exe Size: 89,282 bytes 

startup:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "startkey" 
data: C:\WINDOWS\System32\startkey.exe 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "startkey" 
data: C:\WINDOWS\System32\startkey.exe 



tested on Windows XP
July 25, 2006

MegaSecurity