Beast 1.8 (a)
Copyright © MegaSecurity
By Tataye
Informations
| From | Rumania |
| Author | Tataye |
| Family | Beast |
| Category | Remote Access |
| Version | Beast 1.8 (a) |
| Language | Delphi, compressed with ASPack |
Additional Information
Client:
size: 633.856 bytes
Server:
dropped files:
c:\WINDOWS\system32\kb.tlg size: 180 bytes
c:\WINDOWS\system32\mshost.exe size: 197.671 bytes
c:\WINDOWS\system32\shell32.com size: 197.671 bytes
c:\WINDOWS\system32\Com\comsv.com size: 197.671 bytes
port: 666 TCP
startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{AS096941-B967-10D8-9CBD-1671028A369E} "StubPath"
data: C:\WINDOWS\System32\Com\comsv.com
HKEY_CLASSES_ROOT\exefile\shell\open\command "(Default)"
old data: "%1" %*
new data: shell32.com "%1" %*If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.