Mal/MSIL-FP

Category: Viruses and Spyware Protection available since:07 Apr 2013 06:12:00 (GMT)
Type: Malicious behavior Last Updated:07 Apr 2013 06:12:00 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Mal/MSIL-FP include:

Example 1

File Information

Size
549K
SHA-1
b844ebb20c9b30052e4523c2aa20f8062259e0ce
MD5
846b7eb307907e8de88b42e8ccf8d78a
CRC-32
a9c73636
File type
Windows executable
First seen
2012-08-27

Runtime Analysis

Processes Created
  • c:\Documents and Settings\test user\local settings\temp\cvtres.exe
HTTP Requests
  • http://www.rampymc.binhoster.com/index.php
DNS Requests
  • www.rampymc.binhoster.com

Example 2

File Information

Size
824K
SHA-1
cdca554b0b1686feb6e95b3c5dc1cea02a4b1bdd
MD5
39145f198edafa17813770c50bf601dd
CRC-32
cb10877b
File type
Windows executable
First seen
2012-08-23

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\data.dmp
  • c:\Documents and Settings\test user\Local Settings\Temp\data2.dmp
    Size
    95
    SHA-1
    666de960c4e0ade29b7bfe89a589e7656a8b3f39
    MD5
    2d97367ea1b859a61f8f7a7b77873d86
    CRC-32
    e50020a3
    File type
    ASCII text / 8-bit Unicode Transformation Format
    First seen
    2012-08-17
  • c:\Documents and Settings\test user\Local Settings\Temp\cvtres.exe
  • c:\Documents and Settings\test user\Local Settings\Temp\xSpAD.exe
    Size
    549K
    SHA-1
    b844ebb20c9b30052e4523c2aa20f8062259e0ce
    MD5
    846b7eb307907e8de88b42e8ccf8d78a
    CRC-32
    a9c73636
    File type
    Windows executable
    First seen
    2012-08-27
Processes Created
  • c:\Documents and Settings\test user\local settings\temp\cvtres.exe
  • c:\Documents and Settings\test user\local settings\temp\xspad.exe
HTTP Requests
  • http://www.rampymc.binhoster.com/index.php
DNS Requests
  • www.rampymc.binhoster.com

download Try Sophos products for free
Download now