Thread: NFS Undercover Money Trainer
View Single Post
  #3  
Old 25-11-2008, 12:22
DABhand DABhand is offline
Banned
  
Join Date: Nov 2004
Location: Near my PC
Posts: 5,406
Thanks: 0
Thanked 3 Times in 3 Posts
DABhand is on a distinguished road
Hmm no trojan huh or virus huh.

Funny that it tries to continually make a file called stfA7.tmp constantly and write various binaries into windows/system32.

Trying to hide behind UPX is an amateur move :P

Here is a list of its favourite other binaries it makes

prunnet.exe
gadcom.exe

oh and

winvsnet.tmp
Last edited by DABhand; 25-11-2008 at 12:25.
Reply With Quote