Spook 5.4
Released 19 years, 10 months ago. June 2005
Copyright © MegaSecurity
By sforever
Informations
| From | China |
| Author | sforever |
| Family | Spook |
| Category | Remote Access |
| Version | Spook 5.4 |
| Released Date | Jun 2005, 19 years, 10 months ago. |
| Language | Delphi |
Additional Information
Server:
dropped files:
c:\WINNT\Help\BHY1978.CHI Size: 252,560 bytes
c:\WINNT\system32\winexe.exe Size: 252,560 bytes
added to registry:
HKEY_CURRENT_USER\Software\Microsoft\Multimedia\DrawDib
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\MediaResources\msvideo
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SocketService
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\MediaResources\msvideo
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SocketService\Security
tested on Windows 2000
June 30, 2005If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.