Troj/Tavex-A

Category: Viruses and Spyware Protection available since:20 Nov 2013 13:07:54 (GMT)
Type: Trojan Last Updated:20 Nov 2013 13:07:54 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/Tavex-A include:

Example 1

File Information

Size
28K
SHA-1
54b098f50c59f5ced1d782eb32907e6c6f070f78
MD5
49aca228674651cba776be727bdb7e60
CRC-32
18ad650b
File type
Windows executable
First seen
2013-10-28

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Application Data\Norton360\Engine\5.1.0.29\ccSvcHst.exe
    Size
    49M
    SHA-1
    7a9c539f7d67395b59d67a5b598b2d040c5252ce
    MD5
    7cda89a4359c2197869ecb3241e68cc7
    CRC-32
    8f44a0a2
    File type
    Unspecified binary - probably data
    First seen
    2013-10-28
  • c:\Documents and Settings\test user\Application Data\Norton360\Engine\5.1.0.29\readme.lz
    Size
    4.8K
    SHA-1
    29a0a0ed968bda52d1a98fcf7f256089ee96db82
    MD5
    2a368ea343a21cbab8aeed78f99cc2d8
    CRC-32
    40c738f2
    File type
    Unspecified binary - probably data
    First seen
    2013-10-28
  • c:\Documents and Settings\test user\Start Menu\Programs\Startup\Symantec LiveUpdate.lnk
  • c:\Documents and Settings\test user\Application Data\Norton360\Engine\5.1.0.29\wssfmgr.exe
    Size
    20K
    SHA-1
    54af4608bb9d928d48f0f82b5ae461de916adb66
    MD5
    597805832d45d522c4882f21db800ecf
    CRC-32
    42d971a4
    File type
    Windows executable
    First seen
    2013-10-28
Processes Created
  • c:\Documents and Settings\test user\application data\norton360\engine\5.1.0.29\wssfmgr.exe
HTTP Requests
  • http://www.knightmemory.com/stactivex/update7.htm
DNS Requests
  • www.knightmemory.com

Example 2

File Information

File type
Windows executable

Example 3

File Information

File type
Windows executable

download Try Sophos products for free
Download now