Troj/Bredo-AIN

Category: Viruses and Spyware Protection available since:01 Aug 2013 06:36:18 (GMT)
Type: Trojan Last Updated:01 Aug 2013 06:36:18 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/Bredo-AIN include:

Example 1

File Information

Size
1.4M
SHA-1
8b8f3c87e3d6d41375044f57b74499074bb21eef
MD5
0025351f2ee636bf3123e33a42de27e1
CRC-32
0589594f
File type
Visual Basic Script
First seen
2013-07-31

Example 2

File Information

Size
1.1M
SHA-1
9e9fc9fcccde401eb0e1938f9c72ca3bfef3d642
MD5
a117670cb9f64b7d29851f749b8d9622
CRC-32
fd5f7b27
File type
Windows executable
First seen
2013-07-31

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\ZYXHL\ICKWW
    Size
    33K
    SHA-1
    d93958a0676a17e5ec0f2c4c597b4afbf11d626b
    MD5
    7e7afaa7475775bc5a4c6748b0cecd37
    CRC-32
    d9ff0387
    File type
    ASCII text / 8-bit Unicode Transformation Format
    First seen
    2013-07-31
  • c:\Documents and Settings\test user\ZYXHL\LSMEE
    Size
    1.1K
    SHA-1
    9958bb46e644b0d88a81fbc1819b47ddeff8e01d
    MD5
    58610d30f4f20869bae90491156506ce
    CRC-32
    35fe12e6
    File type
    Unspecified binary - probably data
    First seen
    2013-07-31
  • c:\Documents and Settings\test user\ZYXHL\WKUAF
    Size
    142K
    SHA-1
    588dabd43e54d9793e7bd2cecc2fcc0d98ac2d74
    MD5
    6be6ba5dd61289fd9dc8c93299bcabfe
    CRC-32
    89cd2a42
    File type
    Unspecified binary - probably data
    First seen
    2013-07-31
  • c:\Documents and Settings\test user\ZYXHL\NJTKH
    Size
    1.9K
    SHA-1
    f626cd1784deea1c991551be4f46af9198e3d3ab
    MD5
    cd67abf3538fd34549dd359ab36f2244
    CRC-32
    c51fbd0f
    File type
    Unspecified binary - probably data
    First seen
    2013-07-31
  • c:\Documents and Settings\test user\ZYXHL\CJPVC.vbs
    Size
    1.4M
    SHA-1
    8b8f3c87e3d6d41375044f57b74499074bb21eef
    MD5
    0025351f2ee636bf3123e33a42de27e1
    CRC-32
    0589594f
    File type
    Visual Basic Script
    First seen
    2013-07-31
  • c:\Documents and Settings\test user\ZYXHL\GroupoLists.PDF
    Size
    54K
    SHA-1
    522b17d46640f41f89122a8d8acbd982411ff806
    MD5
    28cd9cda22939b4124d800f8badc3266
    CRC-32
    2b3af441
    File type
    Adobe Portable Document Format (PDF)
    First seen
    2013-07-31
  • c:\Documents and Settings\test user\ZYXHL\YMQGIX
    Size
    48K
    SHA-1
    41558cc52d02b543fbc221dc3d7a7787b899c05a
    MD5
    923893ba07aebd21ae0b53bb75db71fe
    CRC-32
    09cd36dd
    File type
    ASCII text / 8-bit Unicode Transformation Format
    First seen
    2013-07-31
Processes Created
  • c:\program files\adobe\reader 8.0\reader\acrord32.exe
  • c:\windows\system32\wscript.exe

download Try Sophos products for free
Download now