ICQ History Stealer 1.1

ICQ History Stealer 1.1
(Not detected by KAV on December 26,2007)

by -eYePoD-

Released in January 2007

Made in Germany


Server
Dropped Files:
c:\WINDOWS\mech.bat       Size: 49 bytes 
c:\WINDOWS\svchost.exe    Size: 45,356 bytes 

Startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "ATI-Graphics"
Data: C:\WINDOWS\svchost.exe 
	
	
	

Tested on Windows XP
December 26, 2007

MegaSecurity