Troj/Zbot-GWH

Category: Viruses and Spyware Protection available since:13 Nov 2013 14:09:16 (GMT)
Type: Trojan Last Updated:13 Nov 2013 14:09:16 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/Zbot-GWH include:

Example 1

File Information

Size
19K
SHA-1
39e0788f7e5836044a5e967e79ceebcc38d0cde9
MD5
0b24577082ccdc08c3cbcce0c464cd0e
CRC-32
a9da8cb0
File type
Windows executable
First seen
2013-11-13

Other vendor detection

Avira
TR/Crypt.XPACK.Gen3

Example 2

File Information

Size
19K
SHA-1
c945d2964b9853785e73439f8d92ace280b7e754
MD5
f07113e03348998d5ed745e748e1e0f2
CRC-32
26963260
File type
Windows executable
First seen
2013-11-13

Other vendor detection

Avira
TR/Crypt.XPACK.Gen3

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\krey.exe
    Size
    19K
    SHA-1
    39e0788f7e5836044a5e967e79ceebcc38d0cde9
    MD5
    0b24577082ccdc08c3cbcce0c464cd0e
    CRC-32
    a9da8cb0
    File type
    Windows executable
    First seen
    2013-11-13
Processes Created
  • c:\docume~1\support\locals~1\temp\krey.exe
DNS Requests
  • cjsuk.com
  • heathhallliverpool.com

download Try Sophos products for free
Download now