Troj/Trackr-E

Category: Viruses and Spyware Protection available since:13 Apr 2013 03:24:15 (GMT)
Type: Trojan Last Updated:26 Jul 2013 22:09:12 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

This Trojan steals Credit card Track1 and Track2 information from Point of Sales (PoS) systems.

Examples of Troj/Trackr-E include:

Example 1

File Information

Size
175K
SHA-1
501142cdfb128b761031b469b91353a98c5202ce
MD5
89a8844c1214e7fc977f026be675a92a
CRC-32
08fb44c3
File type
Windows executable
First seen
2013-04-21

Runtime Analysis

Dropped Files
  • C:\WINDOWS\system32\msaudit.dll
    Size
    96K
    SHA-1
    cb9a400dda47c929f04ce8aaf1d47bc4cede2bef
    MD5
    27bfffa7d034a94b79d3e6ffdda50084
    CRC-32
    ae042ac7
    File type
    Windows executable
    First seen
    2013-03-27
Registry Keys Created
  • HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
    RequireSignedAppInit_DLLs
    0x00000000
Registry Keys Modified
  • HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
    AppInit_DLLs
    msaudit.dll, C:\PROGRA~1\Sophos\SOPHOS~1\SOPHOS~1.DLL
Processes Created
  • c:\windows\system32\cmd.exe
  • c:\windows\system32\find.exe
  • c:\windows\system32\reg.exe

Example 2

File Information

Size
96K
SHA-1
cb9a400dda47c929f04ce8aaf1d47bc4cede2bef
MD5
27bfffa7d034a94b79d3e6ffdda50084
CRC-32
ae042ac7
File type
Windows executable
First seen
2013-03-27

Example 3

File Information

File type
Visual Basic Script

download Try Sophos products for free
Download now