Troj/DwnLdr-KOF exhibits the following characteristics:
File Information
- Size
- 76K
- SHA-1
- e01c0b8cf9383cf1b03e3196450996a6624a465b
- MD5
- 9cbf85451c2f4fec395b868e7ddbd670
- CRC-32
- 05cfe21d
- File type
- Windows executable
- First seen
- 2011-09-04
Runtime Analysis
Registry Keys Modified
- HKLM\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication
- Name
- test_item.exe
Processes Created
- c:\windows\system32\svchost.exe
IP Connections
- 108.12.19.125:35516
- 109.239.168.149:35516
- 173.22.147.71:35516
- 184.69.110.106:35516
- 190.95.104.155:35516
- 24.102.228.1:35516
- 65.28.76.20:35516
- 66.190.10.172:35516
- 71.165.161.162:35516
- 71.191.71.145:35516
- 74.53.66.194:35516
- 76.27.153.166:35516
- 78.56.186.123:35516
- 84.212.12.182:35516
- 96.33.247.14:35516
- 96.39.173.8:35516
DNS Requests