YourKeyloggerProgramName
YourKeyloggerProgramName is a keylogger that records all the keystrokes and also takes screenshots of the user's PC invisibly in the background. The logged data can also be sent to any remote attacker through mail.0
General information:
| Malware Name: |
YourKeyloggerProgramName |
| Malware Type: |
Key Logger |
| Company Name: |
Rebrand Software, LLC |
| Company URL: |
http://rebrandsoftware.com/
|
| Threat Level: |
Severe Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation |
Company Description:
Rebrand Software, LLC creates quality software products with a high resale value and rebranding them so that they appear to have been written entirely by us. It gives us the full resell rights to our branded version of our software, and we are free
to sell it however we see fit. Its features are stable programming, useful features, and outstanding user interfaces. Each of its titles uses a professional Microsoft Installer, the same installers used by major software corporations.
Spyware Description:
YourKeyloggerProgramName is a keylogger that records all the keystrokes and also takes screenshots of the user's PC invisibly in the background. The logged data can also be sent to any remote attacker through mail.0
Characteristics/Symptoms:
-> Monitor and capture data from computers -> Run in stealth mode -> Intercepts keystrokes from the keyboard and records them in a log -> Starts with the operating system0
Additional information might be found here:
Processes Running:
YKPND.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Documents and Settings\[USER]\Start Menu\Programs\RebrandSoftware (YourCompany here)\Professional Computer Monitor Demo (YourProgramName here)\Computer Monitor Demo (YourProgramName here).lnk |
1900 |
Shortcut |
| C:\Program Files\YKPMD\EventScheduler.mdb |
364544 |
Microsoft Office Access Application |
| C:\Program Files\YKPMD\Help.rtf |
61667 |
Rich Text Format |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\YKPMD |
| C:\Program Files\YKPMD\projects |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
SOFTWAREMicrosoftWindowsCurrentVersionUninstall{F72438D4-65D4-493B-9930-6EF66903FC09} |
VersionMajor |
| HKEY_LOCAL_MACHINE |
SOFTWAREMicrosoftWindowsCurrentVersionUninstall{F72438D4-65D4-493B-9930-6EF66903FC09} |
VersionMinor |
| HKEY_LOCAL_MACHINE |
SOFTWAREMicrosoftWindowsCurrentVersionUninstall{F72438D4-65D4-493B-9930-6EF66903FC09} |
WindowsInstaller |
