Troj/DwnLdr-KYF

Catégorie: Virus et spywares Protection disponible depuis:14 juil. 2013 10:10:26 (GMT)
Type: Trojan Dernière mise à jour :14 juil. 2013 10:10:26 (GMT)
Prévalence:

Download Téléchargez notre outil gratuit de suppression des virus - Découvrez ce que votre antivirus actuel n'a pas su détecter

Examples of Troj/DwnLdr-KYF include:

Example 1

File Information

Size
337K
SHA-1
105d4d9dea0120a0416a7e83f1c59037e5367a87
MD5
d615b138144584f79166d8e1ce61e375
CRC-32
c0fb79c2
File type
Windows executable
First seen
2013-07-13

Runtime Analysis

Registry Keys Created
  • HKCU\Software\Microsoft\Internet Explorer\Main
    NoProtectedModeBanner
    0x00000001
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3
    2500
    0x00000003
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings
    DisableCachingOfSSLPages
    0x00000001
Registry Keys Modified
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3
    1609
    0x00000003
DNS Requests
  • 0kdnsh6yunshec4.nohtheer.su
  • 185dndtje.nohtheer.su
  • 1h9plokmedlj6qsbh.nohtheer.su
  • 1utg3neukk762f5.eegeingo.cc
  • 2gmnvz.nohtheer.su
  • 37wj62y8lkp3y7sgn.aenaethi.cc
  • 5rlklzw5f1m4913n.nohtheer.su
  • 67gb6g7y.nohtheer.su
  • 6frhflgeqnihx9fkq.nohtheer.su
  • 6gtlj8zgu375rqq3rq.eegeingo.cc
  • 6huxm7fn435395.aenaethi.cc
  • 6t6v82n7.eegeingo.cc
  • 8gmas6wcv2z.aenaethi.cc
  • 93om4qur3u66r.aenaethi.cc
  • aud2lhtxg4u9e1l.nohtheer.su
  • awtioc0yvyfi1zo.aenaethi.cc
  • bxpeicgdgw3.aenaethi.cc
  • cu1pce0shxd.eegeingo.cc
  • d6lt5ru3.nohtheer.su
  • djguf1gewljpcxue.nohtheer.su
  • ehj6i0k335xub.eegeingo.cc
  • eigd1i6890.aenaethi.cc
  • er279c2fuu4j.aenaethi.cc
  • f2d62fsgdc3m.eegeingo.cc
  • f77ry8tp6gpxruzt9.nohtheer.su
  • f9vs7png1d.aenaethi.cc
  • fdy3rzmesooulv1.eegeingo.cc
  • fxeltmyh6.aenaethi.cc
  • fywbe7vcov0htr2d5.aenaethi.cc
  • g53vyz3dm9u544zg.eegeingo.cc
  • g7l44s.aenaethi.cc
  • gfqwfmpv.nohtheer.su
  • gt7q3ujr9lh96jywu.aenaethi.cc
  • gwvyy0zbvgrnl7c8h4.aenaethi.cc
  • gzm0dd36p.nohtheer.su
  • he5b3mx10.eegeingo.cc
  • hvpefo2oo5r1lgr36.eegeingo.cc
  • ic41nsympzqzkw5h5t.eegeingo.cc
  • j08f5ukkub1kw.aenaethi.cc
  • jiijkfbq0j.nohtheer.su
  • jkmw1usqooq.eegeingo.cc
  • joucjupp.nohtheer.su
  • lhoctxmvtg9.aenaethi.cc
  • lvm9f43k7not.nohtheer.su
  • m28bkig9os.aenaethi.cc
  • mjjw5jbvu.nohtheer.su
  • mul95z68o9uf15qg.aenaethi.cc
  • o5lqf8w17a.aenaethi.cc
  • oct8c2d1knxo.eegeingo.cc
  • ocxfn32440bs.eegeingo.cc
  • oi17djxtu72tb8h.nohtheer.su
  • oxq64ewt222tuv3t7y.nohtheer.su
  • q53i2asb278kq.nohtheer.su
  • q96c6reg2.nohtheer.su
  • qcf33361.eegeingo.cc
  • qsdu8nfnx.nohtheer.su
  • r3po4z4u4tz.aenaethi.cc
  • rk73kb5.nohtheer.su
  • ruv9yoauhi.eegeingo.cc
  • s0xxub77tmh.eegeingo.cc
  • ski08ghcuhqw.nohtheer.su
  • t6hg0xwt92ars.eegeingo.cc
  • tckgoc7uhyeov.eegeingo.cc
  • tkqqkiw9wbx.aenaethi.cc
  • u446jbrt0e7h3v.eegeingo.cc
  • u4fb8vwumv.aenaethi.cc
  • v8fpmi0l56.eegeingo.cc
  • vb4frpdgldmi.nohtheer.su
  • veqvznv5rz6mdbyl1y.eegeingo.cc
  • vpfv366fuub3e.aenaethi.cc
  • w0pti6swjz5vcm.nohtheer.su
  • wzyv096.eegeingo.cc
  • x05pjzwm6x2izt.aenaethi.cc
  • x0fnh7sy.eegeingo.cc
  • xx5frxhto7ky3.aenaethi.cc
  • y9tcnki3woisf.eegeingo.cc
  • ze9f6dn.aenaethi.cc
  • zwfnm54d.eegeingo.cc

Example 2

File Information

Size
101K
SHA-1
35359870cac34ccdce17d98437d57694fe1a3b5d
MD5
b9a3ab785a10deaa2226afea15c392ed
CRC-32
2abf157a
File type
Windows executable
First seen
2013-07-12

Other vendor detection

Avira
TR/Injector.jhs

Example 3

File Information

Size
93K
SHA-1
797b442f7464815dfbb3ead90db6dc10dca78841
MD5
a56138928d1deb36fcf10354d6fedaaf
CRC-32
e18c825a
File type
Windows executable
First seen
2013-07-13

Runtime Analysis

Copies Itself To
  • c:\Documents and Settings\test user\Application Data\cache.dat
Registry Keys Modified
  • HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon
    Shell
    explorer.exe,c:\Documents and Settings\test user\Application Data\cache.dat
Processes Created
  • c:\windows\system32\svchost.exe

download Essayez les produits Sophos gratuitement
Téléchargez maintenant