Little Witch 6.1 (z & y)
Copyright © MegaSecurity
By Axlito
Informations
From | Argentina |
Author | Axlito |
Family | Little Witch |
Category | Remote Access |
Version | Little Witch 6.1 (z & y) |
Language | Delphi |
Additional Information
Client:
port: 31339 TCP
Server:
dropped file:
c:\WINDOWS\SYSTEM\Rundll.exe
size: 43.740 bytes
port: 31320 TCP
startup:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "Rundll"
added:
c:\WINDOWS\usr.dat
If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.