Trilight Zone Forum Index Trilight Zone
Privacy & Anonymity is our specialty !
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

Trojan.Win32.Agent.ay

 
Post new topic   Reply to topic    Trilight Zone Forum Index -> Security
Author Message
thedark
Second Lieutenant


Joined: 30 Jul 2005
Posts: 1074

PostPosted: Sat Jul 30, 2005 2:37 pm    Post subject: Trojan.Win32.Agent.ay Reply with quote
This Trojan program has Adware functionality. It is 76800 bytes in size, packed using UPX.
When launching, it copies itself to %WINDIR%\System32 under a random name. It registers this file in the system registry to ensure that the file will be launched each time Windows is rebooted on the victim machine.
It is able to update itself over the Internet.
The program contains the following text strings:
"callinghome.biz"
"startwatcher"
"OfferDrv-{F395B5B4-1837-4e79-AD7B-7287043E4DBC}"
Back to top
Display posts from previous:   
Post new topic   Reply to topic    Trilight Zone Forum Index -> Security All times are GMT
Page 1 of 1

 


Powered by phpBB © 2001, 2005 phpBB Group