Red ZONE 5.5
(Trojan.PSW.RedZone.55)

by Teshke

Written in Delphi, compressed with UPX

Released in august 2003

Made in Russia

more versions 




Server:
c:\WINDOWS\SYSTEM\5.EXE 

size: 73.779 bytes 

startup:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "service.exe" 

added:
HKEY_CURRENT_USER\Software\mirabilis\ICQ\NewOwners 
HKEY_CURRENT_USER\Software\RZ5 
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Network\LanMan
MegaSecurity