Troj/Strictor-B

Category: Viruses and Spyware Protection available since:09 Apr 2014 16:10:27 (GMT)
Type: Trojan Last Updated:09 Apr 2014 16:10:27 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/Strictor-B exhibits the following characteristics:

File Information

Size
189K
SHA-1
f4617365d608957847c9051cce05baef9bfd0ee1
MD5
c3783539ffd556ada6e596fe0be61862
CRC-32
246f01dc
First seen
2014-03-20

Runtime Analysis

Copies Itself To
  • C:\WINDOWS\system32\skyair.exe
Registry Keys Created
  • HKLM\SYSTEM\CurrentControlSet\Services\Microsoft\Enum
    NextInstance
    0x00000001
  • HKLM\SYSTEM\CurrentControlSet\Services\Microsoft\Security
    Security
    □□□@□□□□□□□□□□□□□□@□□□□□□□□□□□ □□□□□□□□□□□ □□@□□□□□□□□□□□□□□□□□□□□□□□□□□ □□□□□@□□□□□□□□@□□□□□ □□□□□□□□□□□□□□ □□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□@□□□□□ □□□□□□□□□□□□□□□□□□□□□□□□□□□□□ □□□□□□□□□□□□□□□□□□□□0□□□□□□□□□□□□□□□□□ □□□□□□□□□□□□□□□□□ □□□□□
  • HKLM\SYSTEM\CurrentControlSet\Services\Microsoft
    ObjectName
    LocalSystem
Processes Created
  • c:\windows\system32\skyair.exe
DNS Requests
  • www.mtjyzx.com

download Try Sophos products for free
Download now