Troj/PDFEx-ID

Category: Viruses and Spyware Protection available since:04 Jun 2013 09:36:18 (GMT)
Type: Trojan Last Updated:18 Oct 2013 05:07:08 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/PDFEx-ID include:

Example 1

File Information

Size
6.6K
SHA-1
6cd20acf21a15c62fe54bb79fb39fbfd507dc24c
MD5
37ed4e50195402ff9f09c032b1fd06f5
CRC-32
9df3a84b
File type
application/pdf
First seen
2011-10-27

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\AcrA91D.tmp
Processes Created
  • c:\program files\adobe\reader 8.0\reader\acrord32.exe
HTTP Requests
  • http://lowsnooze.org/
  • http://lowsnooze.org/osnp91icm/
DNS Requests
  • lowsnooze.org

Example 2

File Information

Size
7.3K
SHA-1
97771315f59e4e6431cd21f2337805afe6551014
MD5
5798919a90d2402d272faf64b66677c4
CRC-32
ec1e725b
File type
Adobe Portable Document Format
First seen
2011-11-24

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\AcrB70D.tmp
Processes Created
  • c:\program files\adobe\reader 8.0\reader\acrord32.exe
HTTP Requests
  • http://www.tofykaam.cjb.net/bl6unvxj/
DNS Requests
  • www.tofykaam.cjb.net

Example 3

File Information

Size
7.2K
SHA-1
e3469d3d383c358f04b8d0f0ab2913620fec35a9
MD5
a3638deb01fcf4bbd098fb2dcb6b45a7
CRC-32
63bec09c
File type
Adobe Portable Document Format (PDF)
First seen
2013-06-03

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\AcrA63E.tmp
    Size
    358
    SHA-1
    60dd2ac6fd048235f3b962b9a6c153dd02120ca6
    MD5
    16c5d5fcc133ad0dd1b60bca8d5d9075
    CRC-32
    43b9ccf8
    File type
    Adobe Portable Document Format (PDF)
    First seen
    2013-08-07
Processes Created
  • c:\program files\adobe\reader 8.0\reader\acrord32.exe
HTTP Requests
  • http://youregistrsnext.net/68vk0et/
DNS Requests
  • youregistrsnext.net

download Try Sophos products for free
Download now