R0xr4t 1.2 Mutant Version (b)
Released 21 years, 9 months ago. December 2002
Copyright © MegaSecurity
By c400s
Informations
| From | Brazil |
| Author | c400s |
| Family | R0xr4t |
| Category | Remote Access |
| Version | R0xr4t 1.2 Mutant Version (b) |
| Released Date | Dec 2002, 21 years, 9 months ago. |
| Language | Delphi |
Additional Information
Server
Dropped Files:
C:\WINDOWS\SYSTEM\ZBIOS.EXE
C:\WINDOWS\SHELL64.EXE
size: 716.800 bytes
port: 10666, 65000, 65010 TCP
startup:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "Microsoft Shell 64"
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices "Microsoft Shell 64"
HKEY_CLASSES_ROOT\txtfile\shell\open\command "(Default)"
c:\windows\system.ini, [boot] "shell"
c:\windows\win.ini, [windows] "run"
added:
c:\WINDOWS\UPX.EXEIf you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.