SpyOutside
SpyOutside is a program that record every keystroke that are pressed on the host computer, it can take screen shots also, and send the logs containing the keystrokes to a e-mail address or it can upload those logs to a ftp server. It includes high
risk threats that are typically installed without user interaction through security exploits, and can severely compromise system security. Such threats may open illicit network connections, use polymorphic tactics to self-mutate, disable security
software, modify system files, and install additional malware. These threats may also collect and transmit personally identifiable information (PII) without consent and severely degrade the performance and stability of computer. 0
General information:
| Malware Name: |
SpyOutside |
| Malware Type: |
Key Logger |
| Company Name: |
Currentchaos |
| Company URL: |
http://currentchaos.tk/
|
| Threat Level: |
High Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation. |
Company Description:
Currentchaos.com offers freeware software(windows), open source (php scripts) and free services for us. One of its software is SpyOutside. It is a program that record every keystroke that are pressed on the host computer, it can take screen shots
also, and send the logs containing the keystrokes to a e-mail address or it can upload those logs to a ftp server. It's free, it's east to use, it's in english and romanian, and it has no add system integrated!
Spyware Description:
SpyOutside is a program that record every keystroke that are pressed on the host computer, it can take screen shots also, and send the logs containing the keystrokes to a e-mail address or it can upload those logs to a ftp server. It includes high
risk threats that are typically installed without user interaction through security exploits, and can severely compromise system security. Such threats may open illicit network connections, use polymorphic tactics to self-mutate, disable security
software, modify system files, and install additional malware. These threats may also collect and transmit personally identifiable information (PII) without consent and severely degrade the performance and stability of computer. 0
Characteristics/Symptoms:
-> Monitor and capture data from computers -> Run in stealth mode -> Intercepts keystrokes from the keyboard and records them in a log -> Starts with the operating system0
Additional information might be found here:
Processes Running:
Sp0.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Program Files\SpYOuTSiDe\ReadMe.txt |
2894 |
Text Document |
| C:\Program Files\SpYOuTSiDe\Remove.exe |
86077 |
Application |
| C:\Program Files\SpYOuTSiDe\uninstall.ini |
1271 |
Configuration Settings |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\SpYOuTSiDe |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CurrenTChaoS - Sp0 - |
URLInfoAbout |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CurrenTChaoS - Sp0 - |
URLUpdateInfo |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CurrenTChaoS - Sp0 - |
UninstallString |
