Troj/VB-GKY

Category: Viruses and Spyware Protection available since:27 Feb 2013 12:50:10 (GMT)
Type: Trojan Last Updated:27 Feb 2013 12:50:10 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/VB-GKY include:

Example 1

File Information

Size
104K
SHA-1
37de6c6ef462e43f27dc77812958a3112ceb6b58
MD5
fc0adef56fd365fc9fb139ff57f02b78
CRC-32
252e99e5
File type
Windows executable
First seen
2007-06-23

Example 2

File Information

Size
108K
SHA-1
8fa4b2f7444c8e63ab5a83cb25988fd74cd2cef9
MD5
bb257672e44ee06f0a1c19340c04712d
CRC-32
261608f7
File type
Windows executable
First seen
2012-10-16

Runtime Analysis

Copies Itself To
  • c:\Documents and Settings\test user\Application Data\vmwinsrv.exe
Registry Keys Created
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
    vmwinsrv
    c:\Documents and Settings\test user\Application Data\vmwinsrv.exe
Processes Created
  • c:\Documents and Settings\test user\application data\vmwinsrv.exe
DNS Requests
  • sg2jhc7x.serveblog.net

download Try Sophos products for free
Download now