HPsus/VBNA-B

Category:	Suspicious Behavior and Files	Protection available since:	21 Jan 2013 16:48:16 (GMT)
Type:	Suspicious file	Last Updated:	30 Jan 2013 02:20:02 (GMT)

Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of HPsus/VBNA-B include:

Example 1

File Information

Size: 104K
SHA-1: 544d5d3fa52a780f7985203dfe7fec24659b13ea
MD5: 63f35b1820cdecbb47397750731457ab
CRC-32: f21e39f8
File type: Windows executable
First seen: 2012-05-16

Other vendor detection

Kaspersky: Worm.Win32.VBNA.b

Runtime Analysis

Dropped Files

c:\Documents and Settings\test user\wueig.exe
Size
104K
SHA-1
4efb1dbdaa7cf3a2ec9583a61873806160d0fad5
MD5
aa85a3d0dd3b04edcbe2164503e3891f
CRC-32
48f7644f
File type
Windows executable
First seen
2012-07-30
F:/Porn.exe
Size
104K
SHA-1
ac253773e535edeb7a3d9dfd87a413f4f91144b0
MD5
dc36c05e694ca6a4ef2edd1b533a01c3
CRC-32
030a6007
File type
Windows executable
First seen
2012-07-30
F:/Passwords.exe
Size
104K
SHA-1
ac253773e535edeb7a3d9dfd87a413f4f91144b0
MD5
dc36c05e694ca6a4ef2edd1b533a01c3
CRC-32
030a6007
File type
Windows executable
First seen
2012-07-30
F:/Secret.exe
Size
104K
SHA-1
060f9eb17627eb083451168eb2c84349dd7a49e4
MD5
483370e7c2afb24db1e8b5779685feb4
CRC-32
05c49913
File type
Windows executable
First seen
2012-07-30
F:/wueig.exe
Size
104K
SHA-1
060f9eb17627eb083451168eb2c84349dd7a49e4
MD5
483370e7c2afb24db1e8b5779685feb4
CRC-32
05c49913
File type
Windows executable
First seen
2012-07-30
F:/Sexy.exe
Size
104K
SHA-1
8e26acc2e32f186e6988aacfbb27d6a649c14536
MD5
7cbd72b271535450248b40321a0b73b9
CRC-32
924f478b
File type
Windows executable
First seen
2012-07-30

Registry Keys Created

HKCU\Software\Microsoft\Windows\CurrentVersion\Run
wueig
c:\Documents and Settings\test user\wueig.exe /h
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
NoAutoUpdate
0x00000001

Registry Keys Modified

HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
ShowSuperHidden
0x00000000

Processes Created

c:\Documents and Settings\test user\wueig.exe

Example 2

File Information

Size: 88K
SHA-1: 572404dbcf3055d6c7026c90adc52ec01be62fd4
MD5: 2a49ac347499b555e7a320ee740d0cff
CRC-32: 6b10eb46
File type: Windows executable
First seen: 2012-07-24

Example 3

File Information

Size: 244K
SHA-1: 81bd13c411029027435f1bbe2ade156aaae80f37
MD5: 706597e50b724f7cfaabe297d7b2df26
CRC-32: d3982bf5
File type: Windows executable
First seen: 2012-12-04

Try Sophos products for free
Download now

Security Goals

INDUSTRIES & SECTORS

COMPANY SIZE

PRODUCT FEATURES

CASE STUDIES

Company Overview

Our People

INNOVATIVE TECHNOLOGY

ALERT SERVICES

Product Features

Product Families

Complete Security

PRODUCTS BY NAME

Free Tools

Next Steps

RESOURCES

FIND AN ANSWER

Support by Product

Maintain your Product

Hire an Expert

WHAT'S POPULAR

THREAT ANALYSIS

THREAT STATISTICS

WHAT'S POPULAR

Threat Definitions

THREAT MONITORING

SECURITY HUBS

LIBRARY

Whats Popular

WHAT'S NEW

Community

IT SECURITY TRAINING

ANATOMY OF AN ATTACK

RESELLER PARTNERS

Managed Service Providers

SYSTEM INTEGRATORS

OEM and Technology

WHAT'S POPULAR

HPsus/VBNA-B

Example 1

File Information

Other vendor detection

Runtime Analysis

Dropped Files

Registry Keys Created

Registry Keys Modified

Processes Created

Example 2

File Information

Example 3

File Information

Free Mac Anti-Virus

Popular topics