Installation to system
The trojan will add an entry to the Windows registry aiming at being run every time Windows starts. The key will be:
Which will point where the file is initially run from.
Cidra.D does not spread by itself. It was massively spammed.
It will relay connections though infected computers, giving its creator a
massively distributed distribution channel for spam and other content.
Detection for this malware was published on March 10th, 2004 in the following F-Secure Anti-Virus updates:
Technical Details: Ero Carrera, March 10th, 2004;