Mal/Agent-ANZ

Kategorie: Viren und Spyware Schutz verfügbar seit:05 Mrz 2014 06:38:52 (GMT)
Typ: Malicious behavior Zuletzt aktualisiert:05 Mrz 2014 06:38:52 (GMT)
Verbreitung:

Download Kostenloses Virus Removal Tool downloaden – Finden Sie Bedrohungen, die Ihre Virenschutzsoftware übersehen hat

Examples of Mal/Agent-ANZ include:

Example 1

File Information

Size
192K
SHA-1
03b43f5818a17b1781b37113fb21c54c8d3e4421
MD5
2a56a22b0b7b00cd1920d3f4d3e0511b
CRC-32
761b8afa
File type
Windows executable
First seen
2013-07-04

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Application Data\ntuser.dat
Registry Keys Modified
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
    http
    0x00000001
HTTP Requests
  • http://103.242.3.97/api/soft4/openbook/
IP Connections
  • 103.242.3.97:80
  • 8.8.8.8:
DNS Requests
  • 97.3.242.103.in-addr.arpa

Example 2

File Information

Size
192K
SHA-1
2441e6e3b33fef269d4fad52468c32231340d9b4
MD5
4ab7084632a74a8fbce04be13c4c6f67
CRC-32
4908173b
File type
Windows executable
First seen
2014-03-05

Example 3

File Information

Size
192K
SHA-1
9dff532aa9f00457cd7dc9dac9897d097fb74d15
MD5
cf37ad1edd906ac0738d1b840309cc5f
CRC-32
163a0239
File type
Windows executable
First seen
2013-07-04

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Application Data\ntuser.dat
    Size
    6.6K
    SHA-1
    27d1c0ff775501b414782c580b3970d4dc2e62ad
    MD5
    ccb5028d6079e3f67013d65fd0c89b98
    CRC-32
    33fc0da9
    File type
    application/octet-stream
    First seen
    2014-03-04
Registry Keys Modified
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults
    http
    0x00000001
HTTP Requests
  • http://103.242.3.97/api/soft4/openbook/
IP Connections
  • 103.242.3.97:80
  • 8.8.8.8:
DNS Requests
  • 97.3.242.103.in-addr.arpa

Download Sophos Produkte kostenlos testen
Jetzt downloaden