Netsys 2006

Netsys 2006
(Backdoor.Win32.Delf.ari)
(Backdoor.Win32.Hupigon.bbw)

by Zhou Jian

Written in Delphi

Released in March 2006

Made in China

more versions


Server:
dropped file:
c:\Program Files\Internet Explorer\SYSTEMS.EXE
size: 345,427 bytes 

startup:
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Zingrwx "ImagePath"
data: C:\Program Files\Internet Explorer\SYSTEMS.EXE -WINTV 




tested on windows XP
July 09, 2007

MegaSecurity