Troj/AutoIt-AGW

Category: Viruses and Spyware Protection available since:31 Mar 2014 09:20:54 (GMT)
Type: Trojan Last Updated:31 Mar 2014 09:20:54 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/AutoIt-AGW exhibits the following characteristics:

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\42q1f7ip113sn\67545.vbs
  • c:\Documents and Settings\test user\42q1f7ip113sn\UYtdcq.HZD
  • c:\Documents and Settings\test user\42q1f7ip113sn\96138.cmd
  • c:\Documents and Settings\test user\42q1f7ip113sn\test_item.exe
    Size
    915K
    SHA-1
    0bb74a9d3154d1269e5e456aa41e94b60f753f78
    MD5
    e01ced5c12390ff5256694eda890b33a
    CRC-32
    d4510459
    File type
    Windows executable
    First seen
    2014-01-08
  • c:\Documents and Settings\test user\42q1f7ip113sn\TVCxisNtLeSW.ZFM
  • c:\Documents and Settings\test user\42q1f7ip113sn\sZashg.WZL
  • c:\Documents and Settings\test user\42q1f7ip113sn\run.vbs
Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce
    42q1f7ip113sn
    C:\DOCUME~1\support\42q1f7ip113sn\67545.vbs
Processes Created
  • c:\windows\microsoft.net\framework\v2.0.50727\regsvcs.exe
  • c:\windows\system32\wscript.exe

download Try Sophos products for free
Download now