IMP-Keylogger
Released 18 years, 5 months ago. June 2006
Copyright © MegaSecurity
By Amir_Coder
Informations
| Author | Amir_Coder |
| Family | IMP-Keylogger |
| Category | Information Stealer |
| Version | IMP-Keylogger |
| Released Date | Jun 2006, 18 years, 5 months ago. |
| Language | Delphi |
Additional Information
Server:
dropped files:
c:\WINDOWS\unlite.exe Size: 24,546 bytes
c:\WINDOWS\system32\Display01.dll Size: 28,672 bytes
c:\WINDOWS\system32\winnt\service.exe Size: 24,546 bytes
added to registry:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableRegistryTools"
data: 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System "DisableTaskMgr"
data: -1
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Media Center Update"
data: C:\WINDOWS\unlite.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2bf41072-b2b1-21c1-b5c1-0305f4155515} "StubPath"
data: C:\WINDOWS\unlite.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings "Media Center Update"
data: C:\Documents and Settings\%user%\Desktop\Mahdi-Keylogger\Mahdi-Keylogger\server.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system "DisableRegistryTools"
data: 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system "DisableTaskMgr"
data: -1
tested on Windows XP
June 25, 2006If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.