Archive A Reconstructed © MegaSecurity Database

• a
• b
• c
• d
• e
• f
• g
• h
• i
• j
• k
• l
• m
• n
• o
• p
• q
• r
• s
• t
• u
• v
• w
• x
• y
• z
• other

The backdoor is installed by the MyDoom worm

dropped files:
c:\WINDOWS\All Users\Start Menu\Programs\StartUp\dx32hhlp.exe
size: 139.776 bytes 

c:\WINDOWS\SYSTEM\dx32hhlp.exe
size: 139.776 bytes 
	
startup:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "devsec"
data: C:\WINDOWS\SYSTEM\dx32hhlp.exe 

c:\WINDOWS\All Users\Start Menu\Programs\StartUp

attempts to connect to an IRC server and join #botdhb4ever

tested on Windows 98
November 24, 2004

This archive is an almost-complete reconstruction of the legendary Mega Security (also known as Kobayashi), a premier 90s-era "Trojan Database" where malware authors once showcased their work. After a decade offline, the site was brought back in August 2024 by its original creator, MasterRat, who authorized the Malware Gallery to host this modernized, searchable version of the collection. While the original site remains available for those seeking a nostalgic, old-school experience, we are proud to continue its legacy here. Full credit and thanks go to MasterRat and the retired Mega Security staff for their years of dedicated work in cataloging these historical samples.