Troj/DwnLdr-KXH

Category: Viruses and Spyware Protection available since:15 Jun 2013 06:26:55 (GMT)
Type: Trojan Last Updated:15 Jun 2013 06:26:55 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/DwnLdr-KXH exhibits the following characteristics:

File Information

Size
29K
SHA-1
4db34ed0ceeb99129853cb485ab94bb76b443855
MD5
c28be14da9273647aca1f374c8ad9d9f
CRC-32
54c7b38b
File type
Windows executable
First seen
2013-06-14

Runtime Analysis

Registry Keys Modified
  • HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon
    Shell
    explorer.exe,c:\Documents and Settings\test user\Application Data\AltShell.dat
Processes Created
  • c:\windows\system32\svchost.exe
HTTP Requests
  • http://havkcheck.org/news/uydi-chopoztaelvbfgozxamrpqpdnsopqfdgrmumul-enhidkuyhtwqvz-cprn-wtmi-rmrn_quqhttgnpdmr-ixqh-.html
DNS Requests
  • havkcheck.org

download Try Sophos products for free
Download now