denys Posted January 26, 2010 Report Posted January 26, 2010 (edited) Recovery:Miranda (Private Version only)Google Talk (Private Version only)(NEW)Firefox 2.xx - 3.xxIE6IE7 - 8FilezillaSmart FTPFlashFXPCoreFTPTrillianPidgin and GaimPaltalkSceneDigsbyLive MessengerMSN MessengerAIM 6.xx (Private Version only)NO-IPDynDNSOutlookCamFrog (NEW)Custom CD-Key Grabber (Input own path to key you want to grab)Icon Options:Replace Default Icon:Icon HunterMain Features:Stub / Builder made in VB6FUD Scantime + RuntimeAll strings are encrypted, all your inputted data, (PHP url) is encrypted, and all API's that can be encrypted/called dynamically are encrypted.No 3rd party applications usedUAC Bypassoutput.exe = 96kb uncompressed, 37.7kb compressed(NEW)Send info via PHP (MySQL setup)(NEW)Output.exe requires NO dependencies. (Builder does though) (NEW)Ability to import FUD stubsAnti-Generic SandboxAnti-Virtual PC, VMWare, VirtualBoxInstallation options (You get the option to pick where the file drops to / where in the registry to add the startup key.)Pick the dropped files attributes (Hidden, Read only, or System)Option to compress with UPXScramble the UPX headerAdded File Version Info Cloner (NEW)Fake error messageChange the Date of the outputted executable's dateIncrease the files size (Add NOP bytes to the file)Load and Save your sessions!Private VersionAll of the listed features above + a unique stub that no one else has.AIM 6.xx recoveryMiranda recoveryGoogle Talk recoveryMeltOption on builder to delete, output.exe, icon. (save kbs)No set number of CD-Key Paths (You can add as many keys as you want grabbed)http://www.2shared.com/file/6987466/7aa082c2/Remote_Penetration_v21.html Edited January 26, 2010 by denys Quote
jiji Posted January 26, 2010 Report Posted January 26, 2010 Virus: TR/Dropper.Gen2 Date discovered: 07/10/2009 Type: Trojan Subtype: Dropper In the wild: Yes Reported Infections: Low Distribution Potential: Low Damage Potential: Low Static file: No Engine version: 7.09.01.35 Quote
