Mal/FakeAV-TE

Category: Viruses and Spyware Protection available since:15 Jul 2013 22:28:28 (GMT)
Type: Malicious behavior Last Updated:31 Jul 2013 23:57:43 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Mal/FakeAV-TE include:

Example 1

File Information

Size
425K
SHA-1
053c0563e6d00e114a8a07e1b2029e80d34d2f08
MD5
cc7126fa288d5282580658de21551e1b
CRC-32
fb919f65
File type
Windows executable
First seen
2013-07-15

Example 2

File Information

Size
395K
SHA-1
06177a7d5c99ef25691a6167c64d60706474fd7c
MD5
a891bd566bb15d736dc2f886ba91f73b
CRC-32
6bbecc49
File type
Windows executable
First seen
2013-07-15

Example 3

File Information

Size
451K
SHA-1
2bc28000295baca15afb3dc9d13ae0060fb2dc58
MD5
ac6077692617e3c32c3de9ff9f9fcf84
CRC-32
bd20df24
File type
Windows executable
First seen
2013-05-16

Runtime Analysis

Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce
    602442DE5169769F00006023E2BE7AAB
    c:\test_item.exe
HTTP Requests
  • http://123.108.108.42/api/dom/no_respond/
  • http://123.108.108.42/api/urls/
IP Connections
  • 123.108.108.42:80

download Try Sophos products for free
Download now