Troj/DwnLdr-KUC

Category: Viruses and Spyware Protection available since:30 Apr 2013 22:14:02 (GMT)
Type: Trojan Last Updated:09 May 2013 01:52:55 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/DwnLdr-KUC include:

Example 1

File Information

Size
82K
SHA-1
41b4de345a2b2721b7877dec33d5c9b7d7da0e8e
MD5
c4a1b46aa0a4e79e0d6ae55fbc85e36e
CRC-32
38bac78a
File type
Windows executable
First seen
2013-05-06

Runtime Analysis

Registry Keys Created
  • HKCU\Software\WinRAR
    HWID
    {2□□6□□6□@6□P-□`0□@0□□4□P4□□-□□1□□9□□D□□3□PC□ 8□□5□ B□□}□
HTTP Requests
  • http://ptbil.su/f/pkc.exe
  • http://ptbil.su/f/sc.exe
DNS Requests
  • aihbg.su
  • czdvb.ru
  • ptbil.su

Example 2

File Information

Size
48K
SHA-1
59e8cc171414383d485de7949740e55093e03d16
MD5
baf80b13da42a5be6f46848bc37f8d11
CRC-32
cc2a78ca
File type
Windows executable
First seen
2013-04-30

Runtime Analysis

HTTP Requests
  • http://ariconcrete.com/k.htm
  • http://cantoryaakovmotzen.com/i.htm
  • http://dreamlandesign.com/i.htm
  • http://healingwithpsychedelics.com/f.htm
  • http://northatlanticpotash.com/r.htm
DNS Requests
  • ariconcrete.com
  • cantoryaakovmotzen.com
  • dreamlandesign.com
  • healingwithpsychedelics.com
  • northatlanticpotash.com

Example 3

File Information

Size
311K
SHA-1
74c392fdad39ff78f0371c438d054a2bad40c897
MD5
5b6437e3d7d34e3d2bfe5f1a3a77bc55
CRC-32
ac60055c
File type
Windows executable
First seen
2013-05-08

download Try Sophos products for free
Download now