Troj/Agent-AAKR

Category: Viruses and Spyware Protection available since:04 Mar 2013 14:30:42 (GMT)
Type: Trojan Last Updated:04 Mar 2013 14:30:42 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/Agent-AAKR exhibits the following characteristics:

File Information

Size
48K
SHA-1
0ea9ccd8b5d46778be5321706a074ce8c0c250a8
MD5
4684fd37ecb8e87609bcb07aa5d6c92d
CRC-32
aaadc74c
File type
Windows executable
First seen
2013-03-04

Runtime Analysis

Copies Itself To
  • c:\Documents and Settings\test user\Local Settings\Application Data\fuonxndf.exe
Dropped Files
  • C:\sample.txt
    Size
    175
    SHA-1
    af9e3e882d554b5d75d9ce11d6bb56b14f647997
    MD5
    6df96747865541d31b550ecb76b0f76b
    CRC-32
    c025c59a
    File type
    Unspecified binary - probably data
    First seen
    2012-12-31
Processes Created
  • c:\windows\system32\notepad.exe
  • c:\windows\system32\svchost.exe
IP Connections
  • 109.235.252.2:8088
  • 118.97.15.13:8080
  • 122.155.18.53:8080
  • 188.165.205.46:8088
  • 190.111.176.13:8080
  • 202.153.132.24:8080
  • 213.229.106.32:8088
  • 217.11.63.194:8080
  • 72.29.84.159:60000
  • 74.117.61.123:8080
  • 77.79.81.166:8080
  • 81.93.248.152:8080
  • 84.19.176.36:8080
  • 87.106.51.52:8080
  • 91.121.140.40:8080
  • 91.121.28.146:8080
  • 93.125.30.232:8080
  • 95.140.203.241:8080

download Try Sophos products for free
Download now