Troj/Zbot-HVW

Category: Viruses and Spyware Protection available since:21 Mar 2014 22:16:34 (GMT)
Type: Trojan Last Updated:21 Mar 2014 22:16:34 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/Zbot-HVW include:

Example 1

File Information

Size
292K
SHA-1
01cd9b2224fa739e2c1184d81cf900a8a59d99be
MD5
8533c89c75ef4ba9256b6250c992dd83
CRC-32
b38bf4a9
File type
Windows executable
First seen
2014-03-03

Runtime Analysis

Dropped Files
  • C:\debug.txt
    Size
    1.3K
    SHA-1
    e302f11541887a0e5e60e09cc309e653a9f4558d
    MD5
    5c90d6ceb66acc84a4503a892ca63676
    CRC-32
    be8b4962
    File type
    Configuration Data File (generic)
    First seen
    2014-03-03

Example 2

File Information

Size
292K
SHA-1
06cb4c85be254e8e24c17c167e97a26f0eb92b26
MD5
3943c47f51551eacbeaf52dae6492b85
CRC-32
fb923b42
File type
Windows executable
First seen
2014-02-26

Example 3

File Information

Size
109K
SHA-1
0a7d9f0fff18277afc1c8019d5018e771bfcb4ef
MD5
1fa2823ff6189decfa6b07e46ede55c0
CRC-32
feb0add7
File type
Windows executable
First seen
2014-03-08

Runtime Analysis

Registry Keys Created
  • HKCU\Software\Dmnrafozwi
    License
    0x0000d594
  • HKLM\SOFTWARE\Dmnrafozwi
    License
    0x0000d594
HTTP Requests
  • http://i-cont-18.com/b/shoe/54676
  • http://mega-chips.com/libs5.8/jquery/
DNS Requests
  • i-cont-18.com
  • mega-chips.com

download Try Sophos products for free
Download now