Troj/Trackr-Q

Category: Viruses and Spyware Protection available since:12 Dec 2013 21:33:57 (GMT)
Type: Trojan Last Updated:12 Dec 2013 21:33:57 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

This Trojan steals Credit card Track1 and Track2 information from Point of Sales (PoS) systems.

Examples of Troj/Trackr-Q include:

Example 1

File Information

Size
135K
SHA-1
43afd24048a0281d6f4699627d2363e847b34aa8
MD5
017c34b47659565fa5a621a2b7a9d4a7
CRC-32
4943d2c0
File type
Windows executable
First seen
2007-08-26

Runtime Analysis

Copies Itself To
  • c:\Documents and Settings\test user\Application Data\Install\windefender.exe
Dropped Files
  • c:\Documents and Settings\test user\Application Data\Install\ntfs.dat
    Size
    8
    SHA-1
    c454d1fbd93794940b4b102f5d1358eb4b28312e
    MD5
    aca64e48b71d560e761f35666d4e6640
    CRC-32
    55a5662e
    File type
    ASCII text / 8-bit Unicode Transformation Format
    First seen
    2013-12-12
Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    windefender
    c:\Documents and Settings\test user\Application Data\Install\windefender.exe
Processes Created
  • c:\Documents and Settings\test user\application data\install\windefender.exe
DNS Requests
  • 888andro.net

Example 2

File Information

Size
135K
SHA-1
0031cbabb635156e84e73fc9be085862e255a0c6
MD5
390acd89d59f276972dc4f6968adc438
CRC-32
0a4d3c59
File type
Windows executable
First seen
2013-12-16

Example 3

File Information

Size
135K
SHA-1
05dd1978efa343a13a27c0b6c5cbadcf6066c96e
MD5
2a3a040f7b107c508ba7ea248c29fe68
CRC-32
c57e02ae
File type
Windows executable
First seen
2014-01-01

download Try Sophos products for free
Download now