Bregol
Copyright © MegaSecurity
By ?
Informations
| Author | ? |
| Family | Bregol |
| Category | Remote Access |
| Version | Bregol |
| Language | Visual Basic |
Additional Information
dropped files:
c:\keyl_install.log size: 14 bytes
c:\WINDOWS\SYSTEM\.exe size: 95.744 bytes
c:\WINDOWS\SYSTEM\Keyinfo.txt size: 12 bytes
c:\WINDOWS\SYSTEM\Keylog.txt size: 0 bytes
c:\WINDOWS\SYSTEM\sqldbedt.exe size: 95.744 bytes
added to registry:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "MSMSGS"
data:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Yahoo! Pager"
data:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "MSMSGS"
data:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "sqldbedt"
data: C:\WINDOWS\SYSTEM\sqldbedt.exe
internal name:
Greeting_summer200_1_Flash5
original file name:
Greeting_summer200_1_Flash5.exeIf you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.