Eurosol
Copyright © MegaSecurity
By -=WMP=-
Informations
| From | Russia |
| Author | -=WMP=- |
| Family | Eurosol |
| Category | Remote Access |
| Version | Eurosol |
Additional Information
Server:
dropped file:
c:\WINDOWS\Netbios32.exe
size: 216 KB
port: 1033, 14100 TCP
startup:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run "SysTray32"
c:\windows\system.ini, [boot] "shell"
Added:
c:\WINDOWS\sttask.dat
c:\WINDOWS\sttl.dat
c:\WINDOWS\stup.datIf you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.