Troj/Agent-OOT

Category:	Viruses and Spyware	Protection available since:	02 Sep 2010 03:28:48 (GMT)
Type:	Trojan	Last Updated:	02 Sep 2010 03:28:48 (GMT)
Prevalence:

Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/Agent-OOT include:

Example 1

File Information

Size: 109K
SHA-1: d76e3110b6417c07f2ae863831e41425ce11bf8f
MD5: 1de0883a84ce230a9435cc883b72bb8b
CRC-32: 7c7a9341
File type: application/x-ms-dos-executable
First seen: 2010-09-02

Other vendor detection

Avira: TR/Kryptik.HF
Kaspersky: Backdoor.Win32.TDSS.acm

Runtime Analysis

Dropped Files

C:\WINDOWS\system32\spool\prtprocs\w32x86\555sK.dll
Size
109K
SHA-1
7b9d6a950bb036b65add4e87975a2a78ab970a00
MD5
0b57a996e543cb9869c5909be838c3e5
CRC-32
60321299
File type
application/x-ms-dos-executable
First seen
2010-09-17

Processes Created

c:\windows\system32\spoolsv.exe

Example 2

File Information

Size: 129K
SHA-1: e1ebcdb9290a2e5cd98400d27f7c69ee8f0b8828
MD5: b34ee8a983aaba16645876a7e648bae8
CRC-32: 67bc5505
File type: application/x-ms-dos-executable
First seen: 2010-09-02

Runtime Analysis

Dropped Files

c:\Documents and Settings\test user\Local Settings\Temp\qhi1eue6r7.exe
Size
109K
SHA-1
d76e3110b6417c07f2ae863831e41425ce11bf8f
MD5
1de0883a84ce230a9435cc883b72bb8b
CRC-32
7c7a9341
File type
application/x-ms-dos-executable
First seen
2010-09-02

Example 3

File Information

Size: 109K
SHA-1: 054c5d2499645f62c03671558f17838d6317a5fb
MD5: 08347309b1b7c64a4e736e9af14110d5
CRC-32: af1d358e
File type: application/x-ms-dos-executable
First seen: 2010-09-07

Try Sophos products for free
Download now