.: GedBot v2 :.
- Coded by: GEDZAC LABS
- Version: GedBot v2
- Coded in: Visual Basic, compressed with UPX
- Family: GedBot
- Category: Remote Access
dropped file: c:\WINDOWS\svshots.exe size: 16,896 bytes port: 3667 TCP added to registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "svshots" data: C:\WINDOWS\svshots.exe HKEY_LOCAL_MACHINE\SOFTWARE\GedzacLabs "Title" data: GedBot by GEDZAC LABS attempts to connect to an IRC Server tested on Windows XP August 19, 2005
URL's and mails were automatically redacted (filtered) for reader's safety. However the filter is not perfect and can't find all harmful elements. If you find something dangerous including file link, website, mail address, profanity... contact me immediately at firstname.lastname@example.org, thank you in advance.