Troj/Frethog-AE

Category:	Viruses and Spyware	Protection available since:	16 Jan 2013 21:01:07 (GMT)
Type:	Trojan	Last Updated:	16 Jan 2013 21:01:07 (GMT)
Prevalence:

Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/Frethog-AE include:

Example 1

File Information

Size: 143K
SHA-1: 0e3fe227040d485573972e8ff82d7d0dc0dbfe76
MD5: 79fb3bbb3c56df0de517b46f7b325638
CRC-32: 269f57fc
File type: Windows executable
First seen: 2012-09-15

Runtime Analysis

Dropped Files

c:\Documents and Settings\test user\Local Settings\Temp\ole.dll
Size
124K
SHA-1
7d00d63b7bad81a557042547e6b58240f2fd7da9
MD5
e2da8937355112a3213ff8502a4f4e82
CRC-32
a9eba521
File type
Windows executable
First seen
2007-06-11
c:\Documents and Settings\test user\Local Settings\Temp\sysreqs.log
Size
96K
SHA-1
9002e75707c2d8edc20f7772ddfa99a8ff40b162
MD5
e39a82c200945e563472bd6928275974
CRC-32
9e46fca0
File type
Windows executable
First seen
2012-09-15

Registry Keys Created

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
LoadAppInit_DLLs
0x00000001

Processes Created

c:\windows\system32\cmd.exe

Example 2

File Information

Size: 142K
SHA-1: 174863eb8e5785dfbcae0d5b3a65086f167c96ac
MD5: 0eb6d390cb9f401fe54f3e32fb54a0b5
CRC-32: 618da07e
File type: Windows executable
First seen: 2012-09-20

Runtime Analysis

Dropped Files

c:\Documents and Settings\test user\Local Settings\Temp\ole.dll
Size
124K
SHA-1
f392568ee75f36e6eb4bd91c357cef7d0ff89f31
MD5
f6106fc5b64dcacaab62949b3947d1ad
CRC-32
4256c10b
File type
Windows executable
First seen
2012-09-19
c:\Documents and Settings\test user\Local Settings\Temp\sysreqs.log
Size
92K
SHA-1
c1d1b151abd003ea552d5190db1f363c05449074
MD5
9136f0e13882dcefaf8c933766de02da
CRC-32
825463b6
File type
Windows executable
First seen
2012-09-20

Registry Keys Created

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
LoadAppInit_DLLs
0x00000001

Processes Created

c:\windows\system32\cmd.exe

Example 3

File Information

Size: 126K
SHA-1: 1ca79cacbe557a932b2b2d0cd3d0d0fe9800900f
MD5: da0762a021e4f058dbd5d99c88bfd4ad
CRC-32: dd52382f
File type: Windows executable
First seen: 2012-09-04

Other vendor detection

Avira: TR/Dropper.Gen
Trend: PAK_Generic.001

Try Sophos products for free
Download now

Security Goals

INDUSTRIES & SECTORS

COMPANY SIZE

PRODUCT FEATURES

CASE STUDIES

Company Overview

Our People

INNOVATIVE TECHNOLOGY

ALERT SERVICES

Product Features

Product Families

Complete Security

PRODUCTS BY NAME

Free Tools

Next Steps

RESOURCES

FIND AN ANSWER

Support by Product

Maintain your Product

Hire an Expert

WHAT'S POPULAR

THREAT ANALYSIS

THREAT STATISTICS

WHAT'S POPULAR

Threat Definitions

THREAT MONITORING

SECURITY HUBS

LIBRARY

Whats Popular

WHAT'S NEW

Community

IT SECURITY TRAINING

ANATOMY OF AN ATTACK

RESELLER PARTNERS

Managed Service Providers

SYSTEM INTEGRATORS

OEM and Technology

WHAT'S POPULAR

Troj/Frethog-AE

Example 1

File Information

Runtime Analysis

Dropped Files

Registry Keys Created

Processes Created

Example 2

File Information

Runtime Analysis

Dropped Files

Registry Keys Created

Processes Created

Example 3

File Information

Other vendor detection

Free Mac Anti-Virus

Popular topics