.: Sun Shadow 1.3c :.
Released 16 years, 5 months ago. Aug 2005By yzkzero
- Coded by: yzkzero
- Version: Sun Shadow 1.3c
- Released date: Aug 2005, 16 years, 5 months ago.
- Family: Sun Shadow
- Category: Remote Access
Server: dropped files: c:\WINNT\system32\MoonShadow.dll Size: 263,836 bytes c:\WINNT\system32\MoonShadow.exe Size: 311,296 bytes added to registry: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon "Shell" old data: Explorer.exe new data: Explorer.exe MoonShadow.exe HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List "2046:TCP" data: 2046:TCP:*:Enabled HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List "2046:TCP" data: 2046:TCP:*:Enabled tested on Windows 2000 September 01, 2005
URL's and mails were automatically redacted (filtered) for reader's safety. However the filter is not perfect and can't find all harmful elements. If you find something dangerous including file link, website, mail address, profanity... contact me immediately at firstname.lastname@example.org, thank you in advance.