img196-imageshack.us(Andromeda http malware hosted in voxility.net)

This is another contribution from our anonymous friend
The sample here http://dl.dropbox.com/u/73806662/testandro.exe connects to img196-imageshack.us/pannel/image.php
to have acces to this panel u need user:passwd here imageshack.us/pannel/ feel free to brute it 🙂

from virustotal scan the file testandro.exe apears to be FUD

there is another file downloaded dl.dropbox.com/u/76205929/rk.cmd.dll wich from the name looks like rootkit or command to activate rootkit into infected machines i didnt checked this so feel free to explore it

hosting infos:
http://whois.domaintools.com/37.221.160.51