Troj/Plugx-AD

Category: Viruses and Spyware Protection available since:18 Apr 2014 16:24:17 (GMT)
Type: Trojan Last Updated:18 Apr 2014 16:24:17 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/Plugx-AD exhibits the following characteristics:

File Information

Size
102K
SHA-1
19957f4cc33d8676736756f81899a2fbd0586c1e
MD5
ca99955b9356ed3bcb20175f1245d801
CRC-32
5b8be4dd
File type
Windows executable
First seen
2014-03-05

Runtime Analysis

Copies Itself To
  • C:\Documents and Settings\All Users\DRM\RasTls\RasTls.exe
Dropped Files
  • C:\Documents and Settings\All Users\DRM\RasTls\cnexitdxsrgfiig
    Size
    8
    SHA-1
    781286559388e3b67bdf4da40f05154c1dba4e2b
    MD5
    91e2066470fbc5b29a152c92e7b4044a
    CRC-32
    e325551e
    File type
    Unspecified binary - probably data
    First seen
    2014-03-06
Processes Created
  • c:\documents and settings\all users\drm\rastls\rastls.exe
  • c:\windows\system32\svchost.exe
DNS Requests
  • scqf.bacguarp.com
  • scqf.zuesinfo.com

download Try Sophos products for free
Download now