Little Witch 6.1 (z & y)
Copyright © MegaSecurity
By Axlito
Informations
| From | Argentina |
| Author | Axlito |
| Family | Little Witch |
| Category | Remote Access |
| Version | Little Witch 6.1 (z & y) |
| Language | Delphi |
Additional Information
Client:
port: 31339 TCP
Server:
dropped file:
c:\WINDOWS\SYSTEM\Rundll.exe
size: 43.740 bytes
port: 31320 TCP
startup:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "Rundll"
added:
c:\WINDOWS\usr.datIf you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.