Troj/FakeVLC-A

Category: Viruses and Spyware Protection available since:08 Apr 2011 18:58:29 (GMT)
Type: Trojan Last Updated:08 Apr 2011 18:58:29 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/FakeVLC-A include:

Example 1

File Information

Size
631K
SHA-1
2b7edb9469a0f914d3e71f4a2c8419f2b32f658b
MD5
40382784979d1b1f9cc7661d8308f3ca
CRC-32
b19fb88d
File type
application/x-ms-dos-executable
First seen
2011-04-08

Example 2

File Information

Size
955K
SHA-1
ab8d0b9de594c0d54fe2180a41ce3c82d7d832d2
MD5
682e9de061f4fb6d098779f501fe250b
CRC-32
fdacacad
File type
application/x-ms-dos-executable
First seen
2011-04-08

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\test.txt
    Size
    198
    SHA-1
    79f80588b6b35330176ea09d0af24ecb70b43429
    MD5
    0bd85478354eb74952763f026c8d5c82
    CRC-32
    dce89e96
    File type
    application/octet-stream
    First seen
    2011-04-08
  • c:\Documents and Settings\test user\Local Settings\Temp\Extract.bat
    Size
    86
    SHA-1
    3e8c3f1d58732d218e4766111cbe6554a8ff7cfd
    MD5
    801a28d2941321fa9f6b6bc4dadf2007
    CRC-32
    d81d8ae1
    File type
    application/octet-stream
    First seen
    2011-04-04
  • c:\Documents and Settings\test user\Local Settings\Temp\OfferBoxSetup.exe
    Size
    175K
    SHA-1
    431350f9631ebfe19450010aefe6b344d7bfdab8
    MD5
    92b06db4954ce9212c4c30b43dda8888
    CRC-32
    e229e2b6
    File type
    application/x-ms-dos-executable
    First seen
    2011-04-01
  • c:\Documents and Settings\test user\Local Settings\Temp\vlc-1.1.8-win32.exe
  • c:\Documents and Settings\test user\Local Settings\Temp\vlc.7z
    Size
    334K
    SHA-1
    ab14e9f2d53b20b9dc894c40b572252aba7d77a2
    MD5
    2573f1782e373b28446bd8fcbac8921c
    CRC-32
    b0b0ee52
    File type
    application/octet-stream
    First seen
    2011-04-08
  • c:\Documents and Settings\test user\Local Settings\Temp\7za.exe
    Size
    574K
    SHA-1
    cee178da1fb05f99af7a3547093122893bd1eb46
    MD5
    42badc1d2f03a8b1e4875740d3d49336
    CRC-32
    1a160d6b
    File type
    application/x-ms-dos-executable
    First seen
    2011-01-03
  • c:\Documents and Settings\test user\Local Settings\Temp\install.ini
    Size
    904
    SHA-1
    1b0052c97ce8b7510dc0dd043da3457e40640f3b
    MD5
    3aa0b97dbb68e2817293a96cf3a78229
    CRC-32
    1717e60e
    File type
    application/octet-stream
    First seen
    2011-04-04
  • c:\Documents and Settings\test user\Local Settings\Temp\OB_InstallerWindow_FR.bmp
    Size
    382K
    SHA-1
    cc2def35f4ec514fb8d5b20a34d3a937f4842f60
    MD5
    1492de9e2b26e09b6acef31aa630fab1
    CRC-32
    f1ab3913
    File type
    image/x-bmp
    First seen
    2011-04-01
  • c:\Documents and Settings\test user\Local Settings\Temp\vlc-1.1.8-install.exe
    Size
    631K
    SHA-1
    2b7edb9469a0f914d3e71f4a2c8419f2b32f658b
    MD5
    40382784979d1b1f9cc7661d8308f3ca
    CRC-32
    b19fb88d
    File type
    application/x-ms-dos-executable
    First seen
    2011-04-08
Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings
    GlobalUserOffline
    0x00000000
  • HKCU\Software\WinRAR SFX
    C%%DOCUME~1%support%LOCALS~1%Temp
    C:\DOCUME~1\support\LOCALS~1\Temp
Processes Created
  • c:\docume~1\support\locals~1\temp\7za.exe
  • c:\docume~1\support\locals~1\temp\vlc-1.1.8-install.exe
  • c:\windows\system32\cmd.exe
HTTP Requests
  • http://telechargement-vlc.com/AutoDL/vlc-1.1.8-win32.exe
DNS Requests
  • telechargement-vlc.com

download Try Sophos products for free
Download now

© 1997 - 2013 Sophos Ltd. All rights reserved. Legal Privacy Cookie Information