Troj/MDrop-DZF exhibits the following characteristics:
File Information
- Size
- 65K
- SHA-1
- d4a8878f55a553a9e301b36deeaea2189e462604
- MD5
- 5f50fc436ccb1107749e18eebaab2859
- CRC-32
- 1b263de4
- File type
- application/x-ms-dos-executable
- First seen
- 2012-02-29
Other vendor detection
- Kaspersky
- Trojan-Dropper.Win32.Dapato.afct
Runtime Analysis
Copies Itself To
- c:\Documents and Settings\test user\Application Data\KB00674719.exe
Registry Keys Created
- HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings
- GlobalUserOffline
- 0x00000000
- HKCU\Software\Microsoft\Windows\CurrentVersion\Run
- KB00674719.exe
- "c:\Documents and Settings\test user\Application Data\KB00674719.exe"
Processes Created
- c:\Documents and Settings\test user\application data\kb00674719.exe
- c:\windows\system32\cmd.exe
DNS Requests
- anidgwelnidmzueo.ru
- aopltfxjzsppylfh.ru
- auvqjghelyqwtfsu.ru
- axwiyyfbraskytvs.ru
- aygrpumrlmymcwkh.ru
- ckpmgcdlsidwsdno.ru
- eoicszuwkjskhvki.ru
- gtkwqrzvjshxuvle.ru
- hbirjhcnsuiwgtrq.ru
- hjpyvexsutdctjol.ru
- hmvmgywkvayilcwh.ru
- iwexgsismxsdvyfu.ru
- jtnafzcnuyiqrrkr.ru
- khjkqhomcmapiuig.ru
- kjykbubgadkfnoyw.ru
- kzyimlghktuuzzgz.ru
- lwzyzsqkhjkqhomc.ru
- lzngllvmrbwdcpha.ru
- mapiuigjtnafzcnu.ru
- mceglkuyhzvzjxbj.ru
- mjlutogeawadmrya.ru
- noaztytswxyccnkj.ru
- nwoqbboofsbhqgqp.ru
- ohnubbhwjtzihdka.ru
- ptrzfugnwoqbboof.ru
- qntckhiedetxhdyq.ru
- qtdlnxbqfohcpwft.ru
- rgbjgaofrilwygvh.ru
- sbhqgqpckpmgcdls.ru
- skjwysujlpedxxsl.ru
- sppylfhauvqjghel.ru
- stegqpjuvwqvlmvj.ru
- taqlftbbztqnyngq.ru
- twyzxhwpluclcqcj.ru
- ufwagtlyyptrzfug.ru
- uiixjwxqqbaowfuz.ru
- vjcuiqecxaomkytb.ru
- vzhpiaswhqlswkji.ru
- wbgguucrbkrkjftn.ru
- wfyusepaxvulfdtn.ru
- wiwwkvjkinewgycb.ru
- wyggrgrlaewoaecg.ru
- xinjevgcdfddgrct.ru
- xkwjkbfpftrtdcrf.ru
- xsdvyfuaopltfxjz.ru
- xvmzegestulhtvqz.ru
- xyccnkjufwagtlyy.ru
- yiqrrkriwexgsism.ru
- yljlkjsxdsvtkygo.ru
- yqwtfsunoaztytsw.ru