Mal/Kates-A

Category:	Viruses and Spyware	Protection available since:	16 Nov 2009 16:26:18 (GMT)
Type:	Malicious behavior	Last Updated:	22 Nov 2010 21:21:09 (GMT)
Prevalence:

Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Mal/Kates-A include:

Example 1

File Information

Size: 24K
SHA-1: 21df48f66aea6e73ceb65c80b5689b70532f9a97
MD5: 94bc947d749d82534d7e38c05f3ecffb
CRC-32: a0521008
File type: application/x-ms-dos-executable
First seen: 2010-08-23

Other vendor detection

Avira: TR/PSW.Kates.GX
Kaspersky: Trojan-PSW.Win32.Kates.gx

Example 2

File Information

Size: 31K
SHA-1: 431dbe85f038ad41f837695330322dc0909fada3
MD5: c0aac32877c8bd90728d3e235fe271b9
CRC-32: 127cc32f
File type: application/x-ms-dos-executable
First seen: 2010-10-05

Runtime Analysis

Dropped Files

c:\Documents and Settings\test user\Local Settings\Temp\vgxlstf.tmp
Size
25K
SHA-1
72db2ff7e10ab936ef46607e1b10eab682d0e05d
MD5
94e7ee9e5d60f273db004ffc07ae3c39
CRC-32
5fe324f5
File type
application/x-ms-dos-executable
First seen
2010-10-06

Registry Keys Created

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32
midi9
C:\DOCUME~1\support\LOCALS~1\Temp\vgxlstf.tmp 0yAAAAAAAA

Example 3

File Information

Size: 24K
SHA-1: 5a8982d861b7ef2715f8a6100f6ba0f9e0746076
MD5: 34cd459548df0a737df86828ba555264
CRC-32: b0d3c660
File type: application/x-ms-dos-executable
First seen: 2010-08-23

Other vendor detection

Kaspersky: Trojan-PSW.Win32.Kates.gx

Try Sophos products for free
Download now