XHX 1.73
Released 24 years, 10 months ago. January 2000
Copyright © MegaSecurity
By Mines the Sun
Informations
| From | China |
| Author | Mines the Sun |
| Family | XHX |
| Category | Remote Access |
| Version | XHX 1.73 |
| Released Date | Jan 2000, 24 years, 10 months ago. |
Additional Information
Server:
dropped files:
c:\WINDOWS\SYSTEM\Internet.exe Size: 144.872 bytes
c:\WINDOWS\SYSTEM\uaiia.exe Size: 144.872 bytes
c:\WINDOWS\Explore.exe
c:\WINDOWS\regeditEx.exe
c:\WINDOWS\Winhlp32Ex.exe
c:\WINDOWS\SYSTEM\Internet.exe
c:\WINDOWS\SYSTEM\uaiia.exe
c:\WINDOWS\Regedit.exe (replaced)
port: 7648, 3215 TCP
startup:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "Internet.exe"
HKEY_CLASSES_ROOT\txtfile\shell\open\command "(Default)"
c:\windows\win.ini, [windows] "run"If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.