Troj/Bancos-BXB

Category: Viruses and Spyware Protection available since:18 Nov 2013 07:07:28 (GMT)
Type: Trojan Last Updated:18 Nov 2013 07:07:28 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/Bancos-BXB exhibits the following characteristics:

File Information

Size
263K
SHA-1
7de78424488231e2f5087f005020fe9b3f4a783b
MD5
82ae949d33e0aaaf4c09da6f2fb60bc4
CRC-32
bd1edf80
File type
Windows executable
First seen
2013-11-04

Other vendor detection

Avira
TR/Spy.Banker.269312

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Application Data\iexplore.exe
    Size
    180K
    SHA-1
    c3fdcabf6f0113c8fd4b3c1857f714c809d12541
    MD5
    ac9273540304bbe50389c3ba98708eaf
    CRC-32
    51aa679e
    File type
    Windows executable
    First seen
    2013-11-04
  • c:\Documents and Settings\test user\Application Data\Interop.SHDocVw.dll
    Size
    148K
    SHA-1
    6aafff7002f8e126df22a85261c7dcc394cb40ec
    MD5
    f18c313be56ce3842f0bb4c272e30631
    CRC-32
    549d0410
    File type
    Windows executable
    First seen
    2013-10-30
Registry Keys Created
  • HKCU\Software\VB and VBA Program Settings\iexplore\Enable
    ID
    2a29a6b5-d770-4e26-b2c0-6e2cc403fe23
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    H630SVWA
    c:\Documents and Settings\test user\Application Data\iexplore.exe
HTTP Requests
  • http://site1365468166.provisorio.ws/acoes.asp
DNS Requests
  • site1365468166.provisorio.ws

download Try Sophos products for free
Download now