possible new trojan

[Peter Harkins <sec () malaprop org>]

        Hm, a few hours ago someone sent me what appears to be a trojan. All
e-mail headers were blank; the original from line was "Received: from
gandalf (dialup-28186.dialup.ptt.ru [195.34.28.186])".
        It was a MIME message with a "GOEJNAGO.EXE", 20340 bytes, md5sum of
958aaf80d038e88448f5a9b162d40d5f. A quick strings didn't show anything
and some web searching revealed nothing as well. As I don't have a
windows machine I can't do much in the way of analysis. If anyone knows
what this is or wants a copy, drop me a line.