Ayaz
Released 15 years, 9 months ago. January 2009
Copyright © MegaSecurity
By Hacker Share, modified Ayaz
Informations
| From | Brazil |
| Author | Hacker Share, modified Ayaz |
| Family | Ayaz |
| Category | Remote Access |
| Version | Ayaz |
| Released Date | Jan 2009, 15 years, 9 months ago. |
Additional Information
Client:
Dropped Files:
c:\Documents and Settings\%user%\Application Data\addon.dat
Size: 22,040 bytes
c:\Documents and Settings\%user%\Local Settings\Temp\IXP000.TMP\AYAZ_R~1.EXE
Size: 103,108 bytes
c:\Documents and Settings\%user%\Local Settings\Temp\IXP000.TMP\RAT-_I~1.EXE
Size: 1,328,640 bytes
Added to Registry:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce "wextract_cleanup0"
Data: rundll32.exe C:\WINDOWS\system32\advpack.dll,DelNodeRunDLL32 "C:\DOCUME~1\KOBAYA~1\LOCALS~1\Temp\IXP000.TMP\"
Server
Dropped File:
c:\WINDOWS\wservicez.exe
Size: 157,756 bytes
Added to Registry:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "WServicez"
Data: C:\WINDOWS\wservicez.exe
Tested on Windows XP
January 25, 2009If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.