Archive A Reconstructed © MegaSecurity Database

• a
• b
• c
• d
• e
• f
• g
• h
• i
• j
• k
• l
• m
• n
• o
• p
• q
• r
• s
• t
• u
• v
• w
• x
• y
• z
• other

LyyShell 1.0:
dropped file:
c:\WINNT\system32\ntkernel.exe

size: 38.912 bytes 

port: 9533 TCP

added to registry:
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_LYY\0000\Control
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\LYY\Enum
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\LYY\Security
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_LYY\0000\Control
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LYY\Enum
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LYY\Security

Default Password: lyy 
Default Port: 9533

Command List:

//exit					
//cmd					
//pslist				
//pskill pid				
//run mode				
//sc query *				
//sc query service			
//sc start service			
//sc stop  service			
//sc remove service			
//ts query				
//ts install port			
//ts set port				
//reboot				
//logooff				
//poweroff				
//clog *				
//clog sys				
//clog app				
//clog sec				
//web					
//path					
//cd					
//dir					
//del					
//rm					
//ren					
//type file				
//sysinfo				
//ca user1 user2			
//cca					
//ftime	file1 file2			
//send message counts			
//help command		

ShadowTear

This archive is an almost-complete reconstruction of the legendary Mega Security (also known as Kobayashi), a premier 90s-era "Trojan Database" where malware authors once showcased their work. After a decade offline, the site was brought back in August 2024 by its original creator, MasterRat, who authorized the Malware Gallery to host this modernized, searchable version of the collection. While the original site remains available for those seeking a nostalgic, old-school experience, we are proud to continue its legacy here. Full credit and thanks go to MasterRat and the retired Mega Security staff for their years of dedicated work in cataloging these historical samples.