Troj/Injecto-CR

Category: Viruses and Spyware Protection available since:20 Nov 2013 13:07:54 (GMT)
Type: Trojan Last Updated:20 Nov 2013 13:07:54 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/Injecto-CR exhibits the following characteristics:

File Information

Size
110K
SHA-1
f73c15a0438794c0e5990be5969317d99d690768
MD5
f313fb3d4792b3301f150a177c670a50
CRC-32
79763024
File type
Windows executable
First seen
2013-11-20

Runtime Analysis

Copies Itself To
  • c:\Documents and Settings\test user\Application Data\yahoo.exe
Registry Keys Created
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
    cf0f912aa87fb87dd09d7a961213c3f7
    "c:\Documents and Settings\test user\Application Data\yahoo.exe" ..
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    cf0f912aa87fb87dd09d7a961213c3f7
    "c:\Documents and Settings\test user\Application Data\yahoo.exe" ..
  • HKCU\Environment
    SEE_MASK_NOZONECHECKS
    1
Processes Created
  • c:\Documents and Settings\test user\application data\yahoo.exe
  • c:\windows\system32\netsh.exe
DNS Requests
  • myspacee.sytes.net

download Try Sophos products for free
Download now