Troj/Zbot-YH

Category: Viruses and Spyware Protection available since:02 Sep 2010 08:17:40 (GMT)
Type: Trojan Last Updated:02 Sep 2010 08:17:40 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/Zbot-YH include:

Example 1

File Information

Size
144K
SHA-1
31b4c76eb617d68caa2036c375b76dc66962d103
MD5
4215b9d6d956275186541130d0f734c2
CRC-32
e9afd0ff
File type
application/x-ms-dos-executable
First seen
2010-09-02

Example 2

File Information

Size
144K
SHA-1
489a89c7601a38aa71985f71ff637f9ec018a7e3
MD5
ed58817fa3ea99099a0ff2b0901184a8
CRC-32
95012e88
File type
application/x-ms-dos-executable
First seen
2010-09-01

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Application Data\Egeman\akguf.exe
    Size
    144K
    SHA-1
    915e9821f0b45f227b9fdefec9420aac8890d36a
    MD5
    49df2a9eb8eb3a289a323eb508962dc4
    CRC-32
    ba4cdf2c
    File type
    application/x-ms-dos-executable
    First seen
    2010-10-20
Processes Created
  • c:\windows\system32\cmd.exe

Example 3

File Information

Size
143K
SHA-1
5d92522fb3872a5d9150914a9f57fc4f292d9104
MD5
80ec12450f08554543b1347a1aaf0360
CRC-32
24fa4a0b
File type
application/x-ms-dos-executable
First seen
2010-09-02

download Try Sophos products for free
Download now

© 1997 - 2012 Sophos Ltd. All rights reserved. Legal Privacy