Szaprika

Released 21 years, 5 months ago. June 2003

Copyright © MegaSecurity

By Akosch


Informations
From Germany
Author Akosch
Family Szaprika
Category Remote Access
Version Szaprika
Released Date Jun 2003, 21 years, 5 months ago.
Language Delphi, Source included
Additional Information
Server: 
dropped file:
C:\WINDOWS\Firewall.exe 

size: 399.872 bytes

startup:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "Firewall" 


remark:
Used  method:
Microsoft Internet Explorer (unpatched) contains a vulnerability that can allow script code 
within an HTML document to run an embedded executable file. Since the file is an HTML file,
Internet Explorer will open and parse the file. When the script that points back 
to the embedded executable is parsed, the embedded executable will run on the client
system in the security context of Internet Explorer. 
(Securityfocus)

If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.