OICQsearch 1.6
Copyright © MegaSecurity
By ?
Informations
| From | China |
| Author | ? |
| Family | OICQsearch |
| Category | Remote Access |
| Version | OICQsearch 1.6 |
| Language | Delphi |
Additional Information
Server:
dropped files:
c:\WINDOWS\system32\scanregw.exe Size: 173,568 bytes
c:\WINDOWS\system32\drivers\notepad.exe Size: 173,568 bytes
port: 2001, 2005, 2008, 2009, 2010, 2011, 2012
startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "scanregistry"
data: C:\WINDOWS\System32\scanregw.exe
tested on Windows XP
May 15, 2005If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.