Mal/SillyFDC-AD

Categoría: Virus y programas espía Protección disponible desde:23 abr 2013 02:02:16 (GMT)
Tipo: Malicious behavior Última actualización:23 abr 2013 02:02:16 (GMT)
Predominio:

Download Descargue nuestra herramienta gratuita para la eliminación de virus - Encuentre las amenazas no detectadas por su antivirus

Examples of Mal/SillyFDC-AD include:

Example 1

File Information

Size
247K
SHA-1
2a6ecb706c4e2d9a732da7d1bc2e45e2234916f2
MD5
9fdee1944a26b99d88da729d720c9e96
CRC-32
99ce498a
File type
Windows executable
First seen
2013-04-21

Runtime Analysis

Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    kiaawe
    c:\Documents and Settings\test user\kiaawe.exe /e
  • HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
    NoAutoUpdate
    0x00000001
Registry Keys Modified
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
    ShowSuperHidden
    0x00000000
DNS Requests
  • ns1.datetoday1.com
  • ns1.datetoday1.org
  • ns1.datetoday2.com
  • ns1.datetoday2.net
  • ns1.datetoday2.org
  • ns1.datetoday3.com

Example 2

File Information

Size
247K
SHA-1
2bd6a68f8ee8f252888b9375097b5073a016f049
MD5
d34a25fabdb989221fd54eb27d39d565
CRC-32
7deeb2c0
File type
Windows executable
First seen
2013-04-21

Runtime Analysis

Registry Keys Created
  • HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
    NoAutoUpdate
    0x00000001
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    yppam
    c:\Documents and Settings\test user\yppam.exe /v
Registry Keys Modified
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
    ShowSuperHidden
    0x00000000
DNS Requests
  • ns1.datetoday1.com
  • ns1.datetoday1.org
  • ns1.datetoday2.com
  • ns1.datetoday2.net
  • ns1.datetoday2.org
  • ns1.datetoday3.com

Example 3

File Information

Size
247K
SHA-1
9a3b4abed6743cc89a951776490e001361a66f46
MD5
db04af24c2e9db29fc4c48fdf791baf3
CRC-32
525fad2b
File type
Windows executable
First seen
2013-04-21

Runtime Analysis

Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    sgqaek
    c:\Documents and Settings\test user\sgqaek.exe /m
  • HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
    NoAutoUpdate
    0x00000001
Registry Keys Modified
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
    ShowSuperHidden
    0x00000000
DNS Requests
  • ns1.datetoday1.com
  • ns1.datetoday1.org
  • ns1.datetoday2.com
  • ns1.datetoday2.net
  • ns1.datetoday2.org
  • ns1.datetoday3.com

descargar Pruebe los productos de Sophos totalmente gratis
Descargue una evaluación gratuita