Osiris 2.0 v2
(Backdoor.Win32.VB.czg)

by krackwar

Written in Visual Basic

Released in March 2008

 


Server
Dropped File:
c:\WINDOWS\este.exe
Size: 98,339 bytes 

Startup:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "nos_provoque"
Data: C:\WINDOWS\este.exe 




Tested on Windows XP
May 08, 2008

MegaSecurity