by ZeN
Written in Visual Basic
Released in November 2008
Server Dropped File: c:\explorer.exe Size: 77,877 bytes Added to Registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon "Shell" Old data: Explorer.exe New data: Explorer.exe C:\\explorer.exe Tested on Windows XP December 04, 2008MegaSecurity