Mal/SillyFDC-AD

Kategorie: Viren und Spyware Schutz verfügbar seit:23 Apr 2013 02:02:16 (GMT)
Typ: Malicious behavior Zuletzt aktualisiert:23 Apr 2013 02:02:16 (GMT)
Verbreitung:

Download Kostenloses Virus Removal Tool downloaden – Finden Sie Bedrohungen, die Ihre Virenschutzsoftware übersehen hat

Examples of Mal/SillyFDC-AD include:

Example 1

File Information

Size
247K
SHA-1
2a6ecb706c4e2d9a732da7d1bc2e45e2234916f2
MD5
9fdee1944a26b99d88da729d720c9e96
CRC-32
99ce498a
File type
Windows executable
First seen
2013-04-21

Runtime Analysis

Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    kiaawe
    c:\Documents and Settings\test user\kiaawe.exe /e
  • HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
    NoAutoUpdate
    0x00000001
Registry Keys Modified
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
    ShowSuperHidden
    0x00000000
DNS Requests
  • ns1.datetoday1.com
  • ns1.datetoday1.org
  • ns1.datetoday2.com
  • ns1.datetoday2.net
  • ns1.datetoday2.org
  • ns1.datetoday3.com

Example 2

File Information

Size
247K
SHA-1
2bd6a68f8ee8f252888b9375097b5073a016f049
MD5
d34a25fabdb989221fd54eb27d39d565
CRC-32
7deeb2c0
File type
Windows executable
First seen
2013-04-21

Runtime Analysis

Registry Keys Created
  • HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
    NoAutoUpdate
    0x00000001
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    yppam
    c:\Documents and Settings\test user\yppam.exe /v
Registry Keys Modified
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
    ShowSuperHidden
    0x00000000
DNS Requests
  • ns1.datetoday1.com
  • ns1.datetoday1.org
  • ns1.datetoday2.com
  • ns1.datetoday2.net
  • ns1.datetoday2.org
  • ns1.datetoday3.com

Example 3

File Information

Size
247K
SHA-1
9a3b4abed6743cc89a951776490e001361a66f46
MD5
db04af24c2e9db29fc4c48fdf791baf3
CRC-32
525fad2b
File type
Windows executable
First seen
2013-04-21

Runtime Analysis

Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    sgqaek
    c:\Documents and Settings\test user\sgqaek.exe /m
  • HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
    NoAutoUpdate
    0x00000001
Registry Keys Modified
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
    ShowSuperHidden
    0x00000000
DNS Requests
  • ns1.datetoday1.com
  • ns1.datetoday1.org
  • ns1.datetoday2.com
  • ns1.datetoday2.net
  • ns1.datetoday2.org
  • ns1.datetoday3.com

Download Sophos Produkte kostenlos testen
Jetzt downloaden