Troj/Mdrop-EYQ

Category: Viruses and Spyware Protection available since:28 Mar 2013 14:08:27 (GMT)
Type: Trojan Last Updated:28 Mar 2013 14:08:27 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/Mdrop-EYQ exhibits the following characteristics:

File Information

Size
84K
SHA-1
568a987087dde691c89ba4d0bf77c420071d5c18
MD5
cb958716ca415056c0a85edb881acc11
CRC-32
e42c61c3
File type
Windows executable
First seen
2013-03-28

Runtime Analysis

Copies Itself To
  • c:\Documents and Settings\test user\Application Data\skype.dat
Registry Keys Modified
  • HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon
    Shell
    explorer.exe,c:\Documents and Settings\test user\Application Data\skype.dat
Processes Created
  • c:\windows\system32\svchost.exe

download Try Sophos products for free
Download now