Surila (o) - Malware Gallery

Informations

Author	?
Family	Surila
Category	Remote Access
Version	Surila (o)
Language	Microsoft Visual C++, compressed with UPX

Additional Information

size: 271,872 bytes

added to registry:
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_DX32CXEL
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\dx32cxel
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\C
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DX32CXEL
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\dx32cxel


HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies "DisableRegistryTools"
data: 00, 00, 00, 00 

port: 27229, 27232 TCP

tested on Windows XP
April 24, 2005