Remote Shell 1.5
Released 18 years, 9 months ago. February 2006
Copyright © MegaSecurity
By Impostor
Informations
| From | Iran |
| Author | Impostor |
| Family | Remote Shell |
| Category | Remote Access |
| Version | Remote Shell 1.5 |
| Released Date | Feb 2006, 18 years, 9 months ago. |
| Language | Delphi |
Additional Information
dropped file:
c:\WINDOWS\log.txt
c:\WINDOWS\system32\Backup Center.exe Size: 31,769 bytes
c:\WINDOWS\system32\FormControl.cpl Size: 22,528 bytes
port: 979 TCP
startup:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run "InterBase"
data: C:\WINDOWS\System32\Backup Center.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "SecurityCenter"
data: C:\WINDOWS\System32\Backup Center.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Runservices "FuckIsrael"
data: C:\WINDOWS\System32\Backup Center.exe
tested on Windows XP
March 14, 2006If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.