Yakoza 3.2
Released 17 years, 1 month ago. October 2007
Copyright © MegaSecurity
By Ali Moazemi
Informations
| From | Iran |
| Author | Ali Moazemi |
| Family | Yakoza |
| Category | Information Stealer |
| Version | Yakoza 3.2 |
| Released Date | Oct 2007, 17 years, 1 month ago. |
Additional Information
Server
Dropped Files:
c:\WINDOWS\system32\svchot.exe Size: 9,218 bytes
c:\WINDOWS\system32\svshoct.exe Size: 131,235 bytes
c:\WINDOWS\system32\svshost.exe Size: 131,235 bytes
Added to Registry:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon "Shell"
Old data: Explorer.exe
New data: explorer.exe svshost.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{z6B2445-1963-9142-A0DB-DBDB9E15FB9z} "StubPath"
Data: svchot.exe AutoRun
Tested on Windows XP
November 14, 2007If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.