.: Bmail (c) :.
- Coded by: ?
- Version: Bmail (c)
- Coded in: Microsoft Visual C++
- Family: Bmail
- Category: Remote Access
dropped file: c:\WINDOWS\system32\attavget.txt size: 15 bytes port: 5135 TCP added to registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "setFTPBack" data: C:\WINDOWS\System32\createsw.exe tested on Windows XP December 14, 2005
URL's and mails were automatically redacted (filtered) for reader's safety. However the filter is not perfect and can't find all harmful elements. If you find something dangerous including file link, website, mail address, profanity... contact me immediately at email@example.com, thank you in advance.