Diablo Keys 2.2
Copyright © MegaSecurity
By KodaPT
Informations
| Author | KodaPT |
| Family | Diablo Keys |
| Category | Information Stealer |
| Version | Diablo Keys 2.2 |
| Language | Visual Basic |
Additional Information
Server:
C:\WINDOWS\.exe
size: 128 KB
startup:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run "(Default)"
HKLM\Software\Microsoft\Windows\CurrentVersion\Run "(Default)"
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices "(Default)"
c:\windows\win.ini, [windows] "run"
c:\windows\system.ini, [boot] "shell"
Added:
c:\WINDOWS\SYSTEM\server.exe.dll
c:\WINDOWS\FIL_dd-m-yy_1.OIT
c:\WINDOWS\VAR_dd-m-yy_1_MISC.OIT
Deleted:
c:\WINDOWS\REGEDIT.EXE
c:\WINDOWS\SYSTEM\MSCONFIG.EXEIf you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.