W32/Geral-A

Catégorie: Virus et spywares Protection disponible depuis:20 mai 2013 02:25:19 (GMT)
Type: Win32 executable file virus Dernière mise à jour :20 mai 2013 02:25:19 (GMT)
Prévalence:

Download Téléchargez notre outil gratuit de suppression des virus - Découvrez ce que votre antivirus actuel n'a pas su détecter

Examples of W32/Geral-A include:

Example 1

File Information

Size
488K
SHA-1
8003c3330bcb1c66a1066be5ef437eb1b10998cc
MD5
5a86bcd696103a203830ee593aefaa8f
CRC-32
62a26ab5
File type
Windows executable
First seen
2013-05-17

Example 2

File Information

Size
640K
SHA-1
0002ec65d2d2c016808fa42012b90dc2df4f0906
MD5
aba1650a30fe7df52b5018a8558ae318
CRC-32
64af0b23
File type
Windows executable
First seen
2012-11-10

Runtime Analysis

Dropped Files
  • C:\WINDOWS\system32\bhtxl.dll
    Size
    22K
    SHA-1
    222cf179a1c166b9ac7edd1764cbf13ad2bbcff3
    MD5
    f12c28f2a2114ec3de5f8f8f3016d0e7
    CRC-32
    206513dc
    File type
    Windows executable
    First seen
    2012-11-08
  • c:\Documents and Settings\test user\Local Settings\Temp\2.tmp
  • C:\WINDOWS\system32\system.exe
    Size
    140K
    SHA-1
    a81a5477710cf93e67fc6cd46a2846f7c7290a0d
    MD5
    573f07e84c503c1139a346d99d7ab876
    CRC-32
    f9065372
    File type
    Windows executable
    First seen
    2011-03-01
  • C:\WINDOWS\system32\mngtl.dll
    Size
    75K
    SHA-1
    74cbb52c3a6158c1212fa768a976c4e37d8027c8
    MD5
    d15bce781b57100f494bde31dd457b0d
    CRC-32
    bea8fdd8
    File type
    Windows executable
    First seen
    2010-09-17
Registry Keys Created
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
    system
    C:\WINDOWS\system32\system.exe
Processes Created
  • c:\windows\system32\net.exe
  • c:\windows\system32\net1.exe
  • c:\windows\system32\rundll32.exe
  • c:\windows\system32\sc.exe
  • c:\windows\system32\system.exe
DNS Requests
  • trz12.t12hg.com

Example 3

File Information

Size
686K
SHA-1
00256af905c009228fde8b38dd1c8a1b88134848
MD5
894c93014351fc31f0c015501b126b4f
CRC-32
557e4f6f
File type
Windows executable
First seen
2013-01-15

download Essayez les produits Sophos gratuitement
Téléchargez maintenant