by Ontarget
Written in Visual Basic
Released in October 2004
Server: dropped files: c:\juegos\autobus.exe Size: 28,672 bytes c:\juegos\flashpong.swf Size: 49,750 bytes c:\Program Files\Common Files\System\proxycfg.exe Size: 448,512 bytes c:\Program Files\Common Files\System\VNCHooks.dll Size: 60,928 bytes port: 5800, 5900 TCP startup: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Proxy Config Tool for Windows" data: C:\program files\Common Files\system\proxycfg.exe tested on Windows XP July 17, 2006MegaSecurity