Guangwai Girl 1.53A (c)
Released 23 years, 8 months ago. February 2002
Copyright © MegaSecurity
By Guangwai
Informations
| From | China |
| Author | Guangwai |
| Family | Guangwai Girl |
| Category | Remote Access |
| Version | Guangwai Girl 1.53A (c) |
| Released Date | Feb 2002, 23 years, 8 months ago. |
Additional Information
Server:
dropped files:
c:\WINNT\system32\DIAGCFG.EXE size: 100.352 bytes
c:\WINNT\system32\MSIESMTP.DLL size: 18.432 bytes
port: 6267 TCP
startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices "Diagnostic Configuration"
data: C:\WINNT\system32\DIAGCFG.EXE
HKEY_CLASSES_ROOT\comfile\shell\open\command "(Default)"
old data: "%1" %*
new data: C:\WINNT\system32\DIAGCFG.EXE "%1" %*
HKEY_CLASSES_ROOT\exefile\shell\open\command "(Default)"
old data: "%1" %*
new data: C:\WINNT\system32\DIAGCFG.EXE "%1" %*If you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.