HPsus/Palevo-A

Kategorie: Verdächtiges Verhalten und verdächtige Dateien
Typ: Suspicious behavior

Download Kostenloses Virus Removal Tool downloaden – Finden Sie Bedrohungen, die Ihre Virenschutzsoftware übersehen hat

HPsus/Palevo-A exhibits the following characteristics:

File Information

Size
72K
SHA-1
b05ed5d64529eeb96ba3085d75a2617c80c74d1a
MD5
2cc438f7daaa7558f5b9cf20a6117d4c
CRC-32
a1c8c0dc
File type
application/x-ms-dos-executable
First seen
2011-04-07

Runtime Analysis

Copies Itself To
  • c:\Documents and Settings\test user\fswagz.exe
Registry Keys Created
  • HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
    Taskman
    c:\Documents and Settings\test user\fswagz.exe
Processes Created
  • c:\windows\system32\svchost.exe
DNS Requests
  • jebena.ananikolic.su
  • peer.pickeklosarske.ru

Download Sophos Produkte kostenlos testen
Jetzt downloaden