.: Jeem Trojan (c) :.
- Coded by: ?
- Version: Jeem Trojan (c)
- Coded in: Microsoft Visual C++
- Family: Jeem
- Category: Remote Access
dropped file: c:\WINNT\system32\msrexe.exe size: 31.744 bytes port: 6820, 6763, 9402 TCP added to registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "System Service" data: C:\WINNT\system32\msrexe.exe HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Swartax HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Swartax tested on Windows 2000
URL's and mails were automatically redacted (filtered) for reader's safety. However the filter is not perfect and can't find all harmful elements. If you find something dangerous including file link, website, mail address, profanity... contact me immediately at firstname.lastname@example.org, thank you in advance.