GWGhost 3.54a
Released 21 years ago. April 2004
Copyright © MegaSecurity
By Machine_GW
Informations
| From | China |
| Author | Machine_GW |
| Family | GWGhost |
| Category | Information Stealer |
| Version | GWGhost 3.54a |
| Released Date | Apr 2004, 21 years ago. |
| Language | Delphi, compressed with ASPack |
Additional Information
Server:
dropped files:
c:\WINNT\system32\dxinput.dll size: 22.016 bytes
c:\WINNT\system32\scanregw.exe size: 39.025 bytes
startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "SCANREGW"
data: C:\WINNT\system32\scanregw.exe
tested on win2000If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.