Troj/Zbot-GMG

Kategorie: Viren und Spyware Schutz verfügbar seit:02 Okt 2013 03:44:27 (GMT)
Typ: Trojan Zuletzt aktualisiert:12 Dez 2013 02:17:10 (GMT)
Verbreitung:

Download Kostenloses Virus Removal Tool downloaden – Finden Sie Bedrohungen, die Ihre Virenschutzsoftware übersehen hat

Examples of Troj/Zbot-GMG include:

Example 1

File Information

Size
184K
SHA-1
00722c4d3d0b6dbe673bbb3487555c8d23f5f483
MD5
c7720955aea7ff9ab4ac46eb79b78470
CRC-32
5adf8e8a
File type
Windows executable
First seen
2013-10-29

Runtime Analysis

Processes Created
  • c:\windows\explorer.exe

Example 2

File Information

Size
359K
SHA-1
009dab0217a1fd0680f804444b0df082782c925e
MD5
485a53af39e20ca83a949aeefaaa3742
CRC-32
875b404c
File type
Windows executable
First seen
2013-09-25

Runtime Analysis

Dropped Files
  • C:\debug.txt
    Size
    1.3K
    SHA-1
    dc2af4e66ffd3355126de2eaf60f66c6d710ec2d
    MD5
    5ac54737cbe1ac5cca02c772c3f45c48
    CRC-32
    142b6440
    File type
    ASCII text / 8-bit Unicode Transformation Format
    First seen
    2013-09-26
Processes Created
  • c:\windows\system32\cmd.exe
  • c:\windows\system32\net.exe
  • c:\windows\system32\net1.exe

Example 3

File Information

Size
90K
SHA-1
00a81d0cc3c537053503584effaa2e6a10edae7b
MD5
c374a56f54d600c5f0dea22454ff60ba
CRC-32
ce6e0a8f
File type
Windows executable
First seen
2013-09-30

Other vendor detection

Avira
TR/Spy.ZBot.anb

Runtime Analysis

Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    uqwziupz
    c:\Documents and Settings\test user\Application Data\Pkhdp\mpuhdfiupz.exe
Processes Created
  • c:\docume~1\support\locals~1\temp\dvrztpkwal.pre
  • c:\windows\system32\svchost.exe
HTTP Requests
  • http://micnetwork100.com/img_cache.php
DNS Requests
  • micnetwork100.com

Download Sophos Produkte kostenlos testen
Jetzt downloaden