InfoAtoms

Category: Adware and PUAs Protection available since:23 Mar 2013 14:10:55 (GMT)
Type: Adware Last Updated:01 Nov 2014 10:21:46 (GMT)

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of InfoAtoms include:

Example 1

File Information

Size
1.2M
SHA-1
313b160c0b877b443bbfd01a11ca81bf188edf22
MD5
97374cd4b834b85e7642dc6bcbfb4c78
CRC-32
0143edd3
File type
Windows executable
First seen
2013-03-23

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\nsj4.tmp\nsDialogs.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\6CB79CCE-F3BE-40B4-95BC-B1F511979A59
  • c:\Documents and Settings\test user\Local Settings\Temp\nsj4.tmp\modern-wizard.bmp
  • c:\Documents and Settings\test user\Local Settings\Temp\nsj4.tmp\UAC.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsj4.tmp\System.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsj4.tmp\NSISPlugin.dll

Example 2

File Information

Size
1.2M
SHA-1
caff3d9cea45ad8d47c184840b52f404ed9235ae
MD5
c8adb4005586a9dfe4114063ab187723
CRC-32
481fefd3
File type
Windows executable
First seen
2013-03-29

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\nsq4.tmp\nsDialogs.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsq4.tmp\UAC.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\47056A14-CA36-4C94-9F4F-27F44F2CFF16
  • c:\Documents and Settings\test user\Local Settings\Temp\nsq4.tmp\modern-wizard.bmp
  • c:\Documents and Settings\test user\Local Settings\Temp\nsq4.tmp\NSISPlugin.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsq4.tmp\System.dll

Example 3

File Information

File type
Windows executable

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\nsi4.tmp\UAC.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\360CBD82-21E1-4DA9-A5B9-A4DBA1536E3B
    Size
    30
    SHA-1
    f914aad05285bb1253f8c10c02e3f5c6ba61a6ee
    MD5
    8461fc43289eb15067977d5cabdd438d
    CRC-32
    f497a15e
    File type
    application/octet-stream
    First seen
    2014-10-29
  • c:\Documents and Settings\test user\Local Settings\Temp\nsi4.tmp\modern-wizard.bmp
  • c:\Documents and Settings\test user\Local Settings\Temp\nsi4.tmp\System.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsi4.tmp\NSISPlugin.dll
  • c:\Documents and Settings\test user\Local Settings\Temp\nsi4.tmp\nsDialogs.dll

download Try Sophos products for free
Download now