Wisdom (z)
(Backdoor.Wisdoor.z)

by ?

Written in C++

more versions 





dropped file:
c:\WINDOWS\SYSCFG16.EXE
size: 17.876 bytes
 
port: 559 TCP

startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Windows System Configuration"
data: C:\WINDOWS\SYSCFG16.EXE 

tested on Windows XP
MegaSecurity