kev

kev
(Backdoor.Win32.Iredor)

by ?

Released in February 2004

Made in China


dropped file:
c:\WINNT\system32\.exe
size: 4.096 bytes

startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices "(Default)"
data: .exe
  
port: 8201 TCP

tested on Windows XP

MegaSecurity