Troj/CeeInjec-G

Category:	Viruses and Spyware	Protection available since:	02 Sep 2010 10:46:11 (GMT)
Type:	Trojan	Last Updated:	02 Sep 2010 10:46:11 (GMT)
Prevalence:

Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/CeeInjec-G include:

Example 1

File Information

Size: 38K
SHA-1: d896ab1e6ff39ae4e40189734f1054878528de2b
MD5: 0c42e1564cb7a7c74110f4bb73d08ffd
CRC-32: 7889f8eb
File type: application/x-ms-dos-executable
First seen: 2010-09-02

Other vendor detection

Avira: TR/Dropper.Gen
Kaspersky: Trojan.Win32.Powp.gen

Runtime Analysis

Copies Itself To

C:\WINDOWS\Fonts\i3E8p3h.com

Dropped Files

C:\WINDOWS\ime\imjp8_1\IMJPMIG .exe
C:\bin\rm_disk_mount .exe

Modified Files

C:\bin\rm_disk_mount.bat
- Changed the file contents

IP Connections

83.133.119.139:53

DNS Requests

2.0.0.280.4242497517.3397364156.128.536870976.2246d083104beddd4574a5ea39638c6b641783aeab8f70e509.twothousands.cm

Example 2

File Information

Size: 38K
SHA-1: 0114f3a7f570263f6565052ddf513f714d0e5bfd
MD5: c39515b1eddb460e701a5de302cf59b2
CRC-32: fb1a48f1
File type: application/x-ms-dos-executable
First seen: 2010-08-21

Example 3

File Information

Size: 38K
SHA-1: 0125a18aad6741a873c48511db10467e145f2d2b
MD5: ff2d4f6435919057d986e0e11bc28402
CRC-32: f95ee29c
File type: application/x-ms-dos-executable
First seen: 2010-08-21

Try Sophos products for free
Download now