Troj/Zbot-EKT

Category: Viruses and Spyware Protection available since:01 Apr 2013 06:43:42 (GMT)
Type: Trojan Last Updated:19 Feb 2014 17:48:56 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/Zbot-EKT include:

Example 1

File Information

Size
190K
SHA-1
026e5998a08dfa04d8ce452911608bece673f286
MD5
5556d242e04070910b07c13dfad54581
CRC-32
bc65ac8c
File type
Windows executable
First seen
2013-03-20

Example 2

File Information

Size
190K
SHA-1
04b87778b60fc31b481dd93a8b2e6fa437b02924
MD5
77c553eeaaf152b8a546c212eeae7200
CRC-32
e24e506f
File type
application/x-ms-dos-executable
First seen
2013-03-31

Example 3

File Information

Size
68K
SHA-1
0d375b0aa5bd7d26e62c42f834db662053cfa23e
MD5
7e1e9bd20bec97fc12c5105ebe50cc4d
CRC-32
0f6af52e
File type
Windows executable
First seen
2013-03-15

Runtime Analysis

Copies Itself To
  • C:\Documents and Settings\All Users\svchost.exe
Registry Keys Created
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
    SunJavaUpdateSched
    C:\Documents and Settings\All Users\svchost.exe

download Try Sophos products for free
Download now