by ?
Compressed with UPX
dropped file: c:\WINDOWS\IEXPLORy.EXE size: 8,704 bytes port: 23433 TCP startup: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "MSTestNB" data: C:\WINDOWS\IEXPLORy.EXE The binary contains the text string "ThunderKiss" tested on Windows XP April 20, 2005MegaSecurity