Mal/VBObf-H

Category: Viruses and Spyware Protection available since:01 May 2013 19:51:32 (GMT)
Type: Malicious behavior Last Updated:01 May 2013 19:51:32 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Mal/VBObf-H include:

Example 1

File Information

Size
304K
SHA-1
5e7bb84e7c759bd868cd2dbac5ab7080b0bdb5cb
MD5
40d3bdc0b0c8155b72f157047a48d97b
CRC-32
7f9854bf
File type
application/x-ms-dos-executable
First seen
2013-04-30

Example 2

File Information

Size
303K
SHA-1
0017ccdd36146776a61ac3a1cc0342789e9145f8
MD5
005fd0003cf49937a752a5a02d0f2e2b
CRC-32
4d3cfbc7
File type
Windows executable
First seen
2011-07-04

Runtime Analysis

Registry Keys Created
  • HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
    NoAutoUpdate
    0x00000001
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    zeonat
    c:\Documents and Settings\test user\zeonat.exe /g
Registry Keys Modified
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
    ShowSuperHidden
    0x00000000
DNS Requests
  • ns1.datetoday1.com
  • ns1.datetoday1.net
  • ns1.datetoday1.org
  • ns1.datetoday2.com
  • ns1.datetoday2.net
  • ns1.datetoday2.org
  • ns1.datetoday3.com

Example 3

File Information

Size
304K
SHA-1
05142a307a05d35f17ed90ab123d088166b95564
MD5
c6f7643d703e4d7888b42b9a4efc9828
CRC-32
b19d840c
File type
Windows executable
First seen
2011-07-04

Runtime Analysis

Registry Keys Created
  • HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
    NoAutoUpdate
    0x00000001
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    vawop
    c:\Documents and Settings\test user\vawop.exe /o
Registry Keys Modified
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
    ShowSuperHidden
    0x00000000
DNS Requests
  • ns1.datetoday1.com
  • ns1.datetoday1.net
  • ns1.datetoday1.org
  • ns1.datetoday2.com
  • ns1.datetoday2.net
  • ns1.datetoday2.org
  • ns1.datetoday3.com

download Try Sophos products for free
Download now