Troj/Zbot-GWI

Category: Viruses and Spyware Protection available since:13 Nov 2013 14:09:16 (GMT)
Type: Trojan Last Updated:13 Nov 2013 14:09:16 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/Zbot-GWI include:

Example 1

File Information

Size
24K
SHA-1
884f7fcdd1c06fdff78ac2c20f61ad92a5b2b92d
MD5
95191c75ef4a87cbfa46c0818009312e
CRC-32
d04c48ca
File type
Windows executable
First seen
2013-11-13

Other vendor detection

Avira
TR/Crypt.XPACK.Gen3

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\gams.exe
    Size
    25K
    SHA-1
    951b903bed53f21f869875f56b12b06ca4d5b1b1
    MD5
    e167959441ce8e08d2e1e60dd92e6b91
    CRC-32
    b73749c0
    File type
    Windows executable
    First seen
    2013-11-13
Processes Created
  • c:\docume~1\support\locals~1\temp\gams.exe
DNS Requests
  • signsaheadgalway.com
  • sovereigntransport.com

Example 2

File Information

Size
25K
SHA-1
951b903bed53f21f869875f56b12b06ca4d5b1b1
MD5
e167959441ce8e08d2e1e60dd92e6b91
CRC-32
b73749c0
File type
Windows executable
First seen
2013-11-13

download Try Sophos products for free
Download now