Troj/Agent-AAYZ

Category: Viruses and Spyware Protection available since:01 Apr 2013 11:35:55 (GMT)
Type: Trojan Last Updated:01 Apr 2013 11:35:55 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/Agent-AAYZ include:

Example 1

File Information

File type
application/x-ms-dos-executable

Example 2

File Information

File type
application/x-ms-dos-executable

Example 3

File Information

Size
208K
SHA-1
637fcbe5dd594cea6d147baae68ac0e153b98d9e
MD5
65670af3d31918e683d784695c890890
CRC-32
c92e5f06
File type
application/x-ms-dos-executable
First seen
2013-04-01

Runtime Analysis

Dropped Files
  • C:\WINDOWS\system32\mshelp.htm
    Size
    160K
    SHA-1
    5dc90912efcc832317ddc50b6cfeaba687360fa7
    MD5
    cc245f031cc038212902996880c10be6
    CRC-32
    557d9b1d
    File type
    text/html
    First seen
    2013-04-01
Registry Keys Created
  • HKCU\Software\Microsoft\Internet Explorer\International\CpMRU
    Factor
    0x00000014
Processes Created
  • c:\windows\explorer.exe
HTTP Requests
  • http://cardimage.shinhancard.com/img/email/general/2_2_01.gif
  • http://cardimage.shinhancard.com/img/email/general/2_2_02.gif
  • http://cardimage.shinhancard.com/img/email/general/2_2_04.gif
  • http://cardimage.shinhancard.com/img/email/general/2_2_05.gif
  • http://cardimage.shinhancard.com/img/email/general/6_box_01.gif
  • http://cardimage.shinhancard.com/img/email/general/6_box_02.gif
  • http://cardimage.shinhancard.com/img/email/general/6_box_04.gif
  • http://cardimage.shinhancard.com/img/email/general/6_box_05.gif
  • http://cardimage.shinhancard.com/img/email/general/banner_voice.jpg
  • http://cardimage.shinhancard.com/img/email/general/box_05.gif
  • http://cardimage.shinhancard.com/img/email/general/box_07.gif
  • http://cardimage.shinhancard.com/img/email/general/box_08.gif
  • http://cardimage.shinhancard.com/img/email/general/box_10.gif
  • http://cardimage.shinhancard.com/img/email/general/box_11.gif
  • http://cardimage.shinhancard.com/img/email/general/box_12.gif
  • http://cardimage.shinhancard.com/img/email/general/box_14.gif
  • http://cardimage.shinhancard.com/img/email/general/box_15.gif
  • http://cardimage.shinhancard.com/img/email/general/box_17.gif
  • http://cardimage.shinhancard.com/img/email/general/box_19.gif
  • http://cardimage.shinhancard.com/img/email/general/box_20.gif
  • http://cardimage.shinhancard.com/img/email/general/btn2_print2.gif
  • http://cardimage.shinhancard.com/img/email/general/btn_001.gif
  • http://cardimage.shinhancard.com/img/email/general/btn_002.gif
  • http://cardimage.shinhancard.com/img/email/general/btn_003.gif
  • http://cardimage.shinhancard.com/img/email/general/btn_benefit.jpg
  • http://cardimage.shinhancard.com/img/email/general/btn_carduse.gif
  • http://cardimage.shinhancard.com/img/email/general/btn_carduse.giff
  • http://cardimage.shinhancard.com/img/email/general/btn_love2.gif
  • http://cardimage.shinhancard.com/img/email/general/btn_next.gif
  • http://cardimage.shinhancard.com/img/email/general/btn_prv.gif
  • http://cardimage.shinhancard.com/img/email/general/circle.gif
  • http://cardimage.shinhancard.com/img/email/general/graph_bar_10.gif
  • http://cardimage.shinhancard.com/img/email/general/graph_bar_100.gif
  • http://cardimage.shinhancard.com/img/email/general/graph_bar_25.gif
  • http://cardimage.shinhancard.com/img/email/general/graph_bar_40.gif
  • http://cardimage.shinhancard.com/img/email/general/graph_bar_55.gif
  • http://cardimage.shinhancard.com/img/email/general/graph_bar_70.gif
  • http://cardimage.shinhancard.com/img/email/general/graph_bar_85.gif
  • http://cardimage.shinhancard.com/img/email/general/ico_post.gif
  • http://cardimage.shinhancard.com/img/email/general/line.gif
  • http://cardimage.shinhancard.com/img/email/general/so_1222.jpg
  • http://cardimage.shinhancard.com/img/email/general/spacer.gif
  • http://cardimage.shinhancard.com/img/email/general/style.css
  • http://cardimage.shinhancard.com/img/email/general/tab01_.gif
  • http://cardimage.shinhancard.com/img/email/general/tab02.gif
  • http://cardimage.shinhancard.com/img/email/general/tab03.gif
  • http://cardimage.shinhancard.com/img/email/general/tab04.gif
  • http://cardimage.shinhancard.com/img/email/general/tit_mybenefit.gif
  • http://cardimage.shinhancard.com/img/email/general/view_card1.gif
  • http://cardimage.shinhancard.com/img/email/general/view_card2.gif
  • http://cardimage.shinhancard.com/img/email/general/view_card3.gif
  • http://cardimage.shinhancard.com/img/email/printMade.js
  • http://d0.pc6.com/soft/calc.exe
  • http://mail3.shinhancard.com/servlet/ReceiveConfirmEC
  • http://s1.daumcdn.net/editor/services/hanmailex/5.11.54/js/editorall.js
  • http://www.adobe.com/ubi/template/identity/adobe/screen/gnav.css
  • http://www.ceri.co.kr/ceri_bbs/bbs_board/image/sittle_play.gif
DNS Requests
  • cardimage.shinhancard.com
  • d0.pc6.com
  • mail3.shinhancard.com
  • s1.daumcdn.net
  • www.adobe.com
  • www.ceri.co.kr

download Try Sophos products for free
Download now