SWU32 1.02
Released 21 years ago. September 2003
Copyright © MegaSecurity
By System33r
Informations
| Author | System33r |
| Family | SWU32 |
| Category | Remote Access |
| Version | SWU32 1.02 |
| Released Date | Sep 2003, 21 years ago. |
| Language | Visual Basic |
Additional Information
Server:
dropped file:
c:\WINNT\system32\addon.exe
port: 113 TCP
startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Windows Wininit Command"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices "Windows Wininit Command"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon "Shell"
added:
c:\WINNT\system32\addon.exe
size: 61.472 bytes
tested on win2000If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.