by W32_Cr4Ck3r
Written in Visual Basic
Released in July 2007
Made in Iran
Server Dropped Files: c:\WINDOWS\system32\Explorer.exe Size: 23,769 bytes c:\WINDOWS\system32\regsvr.exe Size: 23,769 bytes Startup: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "regsvr" Data: C:\WINDOWS\System32\Explorer.exe HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "C:\WINDOWS\System32" Data: C:\WINDOWS\System32\Explorer.exe Tested on Windows XP December 26, 2007MegaSecurity