IMP-PS
Released 18 years, 2 months ago. July 2006
Copyright © MegaSecurity
By Mahdi Hezavehi
Informations
| Author | Mahdi Hezavehi |
| Family | IMP-PS |
| Category | Information Stealer |
| Version | IMP-PS |
| Released Date | Jul 2006, 18 years, 2 months ago. |
| Language | Delphi |
Additional Information
Server:
dropped files:
c:\WINDOWS\smlogitech.vbs
size: 179 bytes
deleted file:
c:\WINDOWS\system32\Restore\MachineGuid.txt
added to registry:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "Explorer32"
data: C:\WINDOWS\xplorer.exe
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_DLLCACH\0000\Control
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\DllCach
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\C
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DLLCACH\0000\Control
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DllCach
tested on Windows XP
July 04, 2006If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.