Troj/MSILInj-AP

Category: Viruses and Spyware Protection available since:10 Nov 2013 17:35:35 (GMT)
Type: Trojan Last Updated:10 Nov 2013 17:35:35 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/MSILInj-AP exhibits the following characteristics:

File Information

Size
698K
SHA-1
c0a2a1bb3a3bfc8bb023defbce7d65c8579abd1f
MD5
1ae62a653579387c0be0445f0c2128f8
CRC-32
b7ad603d
File type
Windows executable
First seen
2007-08-23

Other vendor detection

Avira
TR/Injector.cdz.5

Runtime Analysis

Copies Itself To
  • c:\Documents and Settings\test user\Application Data\test_item.exe
Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\logmail.txt
Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce
    Shell
    c:\Documents and Settings\test user\Application Data\test_item.exe
  • HKCU\Software\Microsoft\Windows Script Host\Settings
    Enabled
    1
Processes Created
  • c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
  • c:\windows\system32\cmd.exe
  • c:\windows\system32\wscript.exe
HTTP Requests
  • http://www.myip.ru/en-EN/index.php
DNS Requests
  • www.limitlessproducts.org
  • www.myip.ru

download Try Sophos products for free
Download now