Thursday, February 27, 2014

Lost Door history & versions updates

LOST DOOR 1.1
(Trojan-Spy.Win32.VBChuchelo.ai)
by OussamiO
Released in January 2008
Made in Tunisia
more versions






Server
Dropped File:
c:\WINDOWS\winupdate.exe
Size: 286,920 bytes  

Added to Registry:
HKEY_CURRENT_USER\Software\VB and VBA Program Settings\Windowss\system32 "Start"


Tested on Windows XP
February 23, 2008








LOST DOOR 1.2SE
(Trojan.Win32.Genome.etm for Client)
(Trojan-Spy.Win32.VBChuchelo.ah for Server)
by OussamiO



Released in February 2008



Made in Tunisia





















Server
Dropped File:
c:\WINDOWS\system32\winupdate.exe
Size: 291,020 bytes 

Added to Registry:
HKEY_CURRENT_USER\Software\VB and VBA Program Settings\Windowss\system32 "Start"


Tested on Windows XP
February 13, 2008











LOST DOOR 2.0
(HackTool.Win32.VB.um)
(Trojan-Spy.Win32.VBChuchelo.ak for Server)
by OussamiO



Released in February 2008



Made in Tunisia



















Server
Dropped File:
c:\WINDOWS\system32\winupdate.exe
Size: 295,159 bytes 

Added to Registry:
HKEY_CURRENT_USER\Software\VB and VBA Program Settings\Windowss\system32 "Start"


Tested on Windows XP
February 23, 2008


LOST DOOR 2.1
(HackTool.Win32.VB.tr for Client)
(Trojan-Downloader.Win32.Agent.afvh for Server)
by OussamiO
Released in March 2008
Made in Tunisia
more versions







Server
Dropped Files:
c:\WINDOWS\system32\ijl11.dll        Size: 180,224 bytes 
c:\WINDOWS\system32\winupdate.exe    Size: 182,531 bytes 

Added to Registry:
HKEY_CURRENT_USER\Software\VB and VBA Program Settings\Windowss\system32 "Start"



Tested on Windows XP
March 19, 2008



LOST DOOR 2.2 Beta
(Trojan-Downloader.Win32.Agent.qub)
by OussamiO



Released in May 2008



Made in Tunisia



















Server
Dropped Files:
c:\WINDOWS\system32\ijl11.dll    Size: 180,224 bytes 
c:\WINDOWS\system32\winup.exe    Size: 185,491 bytes  

Added to Registry:
HKEY_CURRENT_USER\Software\VB and VBA Program Settings\Windowss\system32 "Start"



Tested on Windows XP
March 29, 2008








LOST DOOR 2.2 FIX-1
(Not detected by KAV on August 15, 2008)
by OussamiO



Released in June 2008



Made in Tunisia

































Server
Dropped Files:
c:\WINDOWS\system32\svhost.exe
Size: 128,139 bytes  

c:\WINDOWS\system32\logs.txt


Added to Registry:
HKEY_CURRENT_USER\Software\VB and VBA Program Settings\Windowss\system32 "Start"



Tested on Windows XP
July 12, 2008













LOST DOOR 2.2 Stable (Server)
(Trojan.Win32.Agent.xnj)
by OussamiO



Released in May 2008



Made in Tunisia



















Server
Dropped Files:
c:\WINDOWS\system32\svhost.exe
Size: 94,880 bytes 

Added to Registry:
HKEY_CURRENT_USER\Software\VB and VBA Program Settings\Windowss\system32 "Start"
Data: C:\Documents and Settings\Kobayashi\Desktop\LostDoor2.2stable_server\server.exe 



Tested on Windows XP
August 15, 2008








LOST DOOR 3.0 Beta
(not-a-virus:RemoteAdmin.Win32.LostDoor.b)
(Trojan-Spy.Win32.VBChuchelo.g)
(not-a-virus:RemoteAdmin.Win32.LostDoor.a)
by OussamiO



Released in September 2008



Made in Tunisia






























This Rat Is Totally Offred For Gabriela Zeranska


Server
Dropped File:
c:\WINDOWS\system32\svhost.exe
Size: 106,656 bytes 

Added to Registry:
HKEY_CURRENT_USER\Software\VB and VBA Program Settings\Windowss\system32 "Start"
Data: C:\Documents and Settings\%user%\Desktop\Lost Door v3.0 Beta\server.exe 


Tested on Windows XP
September 18, 2008






LOST DOOR 3.0 Stable
(HackTool.Win32.VB.acx)
(Trojan-Spy.Win32.VBChuchelo.am for Server)
by OussamiO



Released in October 2008



Made in Tunisia






























This Rat Is Totally Offred For Gabriela Zeranska


Server
Dropped File:
c:\WINDOWS\system32\svhost.exe
Size: 108,202 bytes 

Added to Registry:
HKEY_CURRENT_USER\Software\VB and VBA Program Settings\Windowss\system32 "Start"

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "winupdate"
Data: C:\WINDOWS\system32\svhost.exe 


Tested on Windows XP
October `13, 2008













LOST DOOR 3.1 Silver
(Trojan-Spy.Win32.VBChuchelo.bt for Server)
(HackTool.Win32.VB.acx for Server2)
by OussamiO



Released in March 2009



Made in Tunisia
































Server
Dropped Files:
c:\WINDOWSrunner.bat                Size: 140 bytes 
c:\WINDOWS\system32\dlllhost.exe    Size: 111,294 bytes 
c:\WINDOWS\system32\logs.txt        Size: 125 bytes  


Tested on Windows XP
April 07, 2009







LOST DOOR 3.2 Stable
(Trojan-Dropper.Win32.Agent.amza for Client)
(Trojan-Spy.Win32.VBChuchelo.bx for Server)
by OussamiO



Released in April 2009



Made in Tunisia

































Server
Dropped Files:
c:\WINDOWS\system32\dlllhost.exe
Size: 129,808 bytes 

Added to Registry:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "Winupdate"
Data: C:\WINDOWS\system32\dlllhost.exe 


Tested on Windows XP
April 23, 2009
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)