TMS
Copyright © MegaSecurity
By ?
Informations
| Author | ? |
| Family | TMS |
| Category | Remote Access |
| Version | TMS |
| Language | Delphi |
Additional Information
Server:
dropped files:
c:\WINDOWS\SYSTEM\mssys32.exe Size: 119.040 bytes
c:\WINDOWS\SYSTEM\outexp.386
port: 1200 UDP
startup:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "mssys32"
c:\windows\win.ini, [windows] "run"
registry added:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\NetworkIf you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.