by m_reza00
Written in Visual Basic
Released in January 2007
Made in Iran
Server Dropped Files: c:\WINDOWS\system32\csmm.exe Size: 40,033 bytes c:\WINDOWS\system32\sxmm.dll Size: 25,088 bytes Startup: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon "Shell" Old data: Explorer.exe New data: explorer.exe C:\WINDOWS\system32\csmm.exe Tested on Windows XP January 07, 2008MegaSecurity