Carufax (m)
Copyright © MegaSecurity
By ?
Informations
| From | Korea (?) |
| Author | ? |
| Family | Carufax |
| Category | Remote Access |
| Version | Carufax (m) |
Additional Information
dropped files:
c:\WINDOWS\system32\iyus.dll Size: 241,664 bytes
c:\WINDOWS\system32\xtempx.xxx Size: 0 bytes
c:\WINDOWS\system32\iyus\kaommkpi.exe Size: 80,896 bytes
startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "iyus"
data: C:\WINDOWS\System32\iyus\kaommkpi.exe
This backdoor is related to the site:
www.utility-carfax.com
tested on Windows XP
November 07, 2005If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.