Vittalia Downloader

Categoria: Adware e PUA Opzioni di protezione ora disponibili:04 feb 2014 23:18:56 (GMT)
Tipo: Adware Ultimo aggiornamento:03 mag 2014 03:46:46 (GMT)

Download Scaricate il nostro Virus Removal Tool: è gratis! - Scoprite le minacce che sono sfuggite al vostro antivirus

Examples of Vittalia Downloader include:

Example 1

File Information

Size
663K
SHA-1
7b3a949bf1711be007615310514c66dcf8eecd29
MD5
5479c6d115f1470a116205de52fa2a80
CRC-32
cf164be7
File type
Windows executable
First seen
2014-02-04

Runtime Analysis

Copies Itself To
  • c:\Documents and Settings\test user\Local Settings\Temp\ICReinstall_sample.exe
Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\css\main.css
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\PT.locale
    Size
    4.2K
    SHA-1
    f4bc4b02b36e5913ef431266e89b578888faec26
    MD5
    39d16f8378d5fb49d8e90d629c440c68
    CRC-32
    3208db37
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\Quick_Specs.png
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\Pause_Button.png
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\css\sdk-ui\progress-bar.css
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\BG.jpg
    Size
    30K
    SHA-1
    9b1d58a4e60d91b00bbf5d4201f8bb2882afb79c
    MD5
    a3ab489fc3a83aebb696cbe2051d3aa5
    CRC-32
    729d12f5
    File type
    JPEG image file with Exif metadata
    First seen
    2013-12-02
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\Color_Button_Hover.png
    Size
    846
    SHA-1
    73b63bb6233e0e27b58ccdcb4ac32b05e36ce046
    MD5
    f6a0a0c082bc7ddc1e0e599493949e1f
    CRC-32
    0ec63bb8
    File type
    PNG (Portable Network Graphics) image format
    First seen
    2013-08-02
  • c:\Documents and Settings\test user\Local Settings\Temp\is702345605\135496_stp.EXE
    Size
    1.1M
    SHA-1
    ed5461682488fbf471867062b6eb9a9b8bf11362
    MD5
    307771c61d8db417e1a89a25bf3e3f43
    CRC-32
    742dcdba
    File type
    Windows executable
    First seen
    2013-12-18
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\DA.locale
    Size
    4.1K
    SHA-1
    5c756336774c9617a3cbd10e1a75942420958f37
    MD5
    a65ece393127671d8429a4e931e19229
    CRC-32
    cd913389
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\CS.locale
    Size
    4.3K
    SHA-1
    f1fc56ed462f58647af8e69a523deb22154e0e6d
    MD5
    62901c2318a8e1c6453f2b35ecaa3b50
    CRC-32
    ed08c8af
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\csshover3.htc
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\ProgressBar.png
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\form.bmp.Mask
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\NL.locale
    Size
    4.3K
    SHA-1
    46fe971f057893320a0b2db5b774f10bec426d0b
    MD5
    dcbb3fd4cbe5dd17120511720ecffb6f
    CRC-32
    60cb4151
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\default_tb.png
    Size
    20K
    SHA-1
    6e3a721aef65625bf99b639800476150d262dd4b
    MD5
    70e70599d4b853df0f12f6cb0e04695f
    CRC-32
    366777fa
    File type
    PNG (Portable Network Graphics) image format
    First seen
    2013-11-03
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\close.png
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\KO.locale
    Size
    4.5K
    SHA-1
    d40473bd1bfb72c740cbd3111ffcea2beec01661
    MD5
    7980c5a747bd3788cc9f175ea8e99f70
    CRC-32
    82647133
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\Grey_Button.png
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\ES.locale
    Size
    4.2K
    SHA-1
    c7c1a1cd6dc1d791d5998656d0be66896e371ff7
    MD5
    405f77252fc7ff2f1f9c15bb2a20e068
    CRC-32
    8d561120
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\TR.locale
    Size
    4.2K
    SHA-1
    c27010b73b1be937de78c1ceb958724bdfd0fffd
    MD5
    d261058bfbbb8f2ddddfdfaaaf88fdc6
    CRC-32
    5590f2db
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\icon_generic.png
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\css\sdk-ui\checkbox.css
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\DE.locale
    Size
    4.5K
    SHA-1
    f9818e60840febff05cb43ccccc59aa281be77b4
    MD5
    cd74b29c357a99c199667948702be10c
    CRC-32
    99a9a6fa
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\css\sdk-ui\images\button-bg.png
  • c:\Documents and Settings\test user\Desktop\Continue uTorrent Installation.lnk
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\close_hover.png
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\Resume_Button.png
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\NO.locale
    Size
    4.2K
    SHA-1
    003dce0d3ac29dce390b54c3d667572971b05c09
    MD5
    a437672840abcea9a3f7c405625fae7a
    CRC-32
    57482767
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\progress.png
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\SV.locale
    Size
    4.0K
    SHA-1
    eb13b0af2d41f9aff7bb1c600f091324c8f7f95a
    MD5
    1229ab8f2aaf9a6b19341e0061c69cf3
    CRC-32
    2350559c
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\is702345605\135496_stp.EXE.part
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\AR.locale
    Size
    5.0K
    SHA-1
    552c6b6a6b6e22f93e23badce122cddae18f99ca
    MD5
    8de6c042e5cc68451e8cc7f8eac4edf7
    CRC-32
    a7ac4a7e
    File type
    Configuration Data File (generic)
    First seen
    2013-12-02
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\css\ie6_main.css
    Size
    1.9K
    SHA-1
    e792ed3676746fe81b1b93ec6c11c7b27a121c96
    MD5
    5fa9587859aea5525ad5461d188c169a
    CRC-32
    1da8cd56
    File type
    ASCII text / 8-bit Unicode Transformation Format
    First seen
    2013-10-25
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\FR.locale
    Size
    4.6K
    SHA-1
    3efe44356ab35ccfe3a2a8e320591d3a0d2620c2
    MD5
    387d23142757940474a4f5f401523e26
    CRC-32
    87aec744
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\default_wi.png
    Size
    28K
    SHA-1
    2dab653eb20be72b034a38dc1fcebbd18f079c86
    MD5
    1cc2677e3e29e45e538985839cff2b42
    CRC-32
    59778b45
    File type
    PNG (Portable Network Graphics) image format
    First seen
    2013-10-25
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\Grey_Button_Hover.png
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\css\sdk-ui\browse.css
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\css\sdk-ui\images\progress-bg.png
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\css\sdk-ui\images\progress-bg2.png
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\JA.locale
    Size
    5.2K
    SHA-1
    5b66a2fb5c14bf2f5c8da2597fa8a81417b3795b
    MD5
    134d82701b94768b94f37d0033253abd
    CRC-32
    e5a36c4b
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\PL.locale
    Size
    4.3K
    SHA-1
    a623e6027bfb54930e1e3aea2a64cab5de00d987
    MD5
    25ec75fd16f474f07abd66b3272c4a46
    CRC-32
    793d1959
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\css\sdk-ui\button.css
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\sponsored.png
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\RU.locale
    Size
    5.8K
    SHA-1
    a1a41f5823a787b19a65ab478536cb340c887fe6
    MD5
    749d6e45a6492be99c16bd46c16c360d
    CRC-32
    beb5e2bf
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\ID.locale
    Size
    4.1K
    SHA-1
    e1c7514a997225dc61baa72a5688cfa9ba02cae6
    MD5
    203b64d261ac8eddc99545e4479c2269
    CRC-32
    e8f391a5
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\FI.locale
    Size
    4.0K
    SHA-1
    397c885a4fb3b5b533638b4848eed91c1d55d45b
    MD5
    1afb2afd85728e975fca8a8ea71d1847
    CRC-32
    0688a599
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\css\sdk-ui\images\progress-bg-corner.png
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\EL.locale
    Size
    6.3K
    SHA-1
    eeb18bd88a9ea68d6e92ba26bed1d93280f16818
    MD5
    06153afcec4185ab368a4f455ca898cb
    CRC-32
    41e81836
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\IT.locale
    Size
    4.2K
    SHA-1
    b5dffdc09b5cace032364c8b77fd74885a2f58db
    MD5
    808581f3f5c24eb35d12025332343234
    CRC-32
    95d09f49
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\EN.locale
    Size
    3.9K
    SHA-1
    ea53b761be427015efbd9ba082e16ff3f14142bb
    MD5
    838bb977e85d67f57ee26f454efcab3f
    CRC-32
    194f6089
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\locale\ZH.locale
    Size
    3.8K
    SHA-1
    884e4b56172797ab1e9d96cf4e2752cf56c7db7d
    MD5
    c61814f50954f5d04b0626b4f1a241bd
    CRC-32
    d6bbc328
    File type
    Configuration Data File (generic)
    First seen
    2014-01-30
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\Color_Button.png
    Size
    863
    SHA-1
    d567455a3e106cd5f456b1b0f395a0d0336aaa27
    MD5
    aebc9f7755027a8790663b5d74088c42
    CRC-32
    fe351702
    File type
    PNG (Portable Network Graphics) image format
    First seen
    2013-08-02
  • c:\Documents and Settings\test user\Local Settings\Temp\ish121703\images\loader.gif
Registry Keys Modified
  • HKLM\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication
    Name
    test_item.exe
HTTP Requests
  • http://img.vittaliacdn.com/img/Global/Yes_Button.png
  • http://img.vittaliacdn.com/img/Global/declineBG.png
  • http://img.vittaliacdn.com/img/Mapayuy/Mapayuy.png
  • http://media.vitkvitk.com/icoinstall/programs/icono-utorrent-128x128.png
  • http://pf.dlbvit.com/s/2/6/26051-673564-torrent.exe
DNS Requests
  • img.vittaliacdn.com
  • media.vitkvitk.com
  • os.vittaliacdn.com
  • pf.dlbvit.com

Example 2

File Information

Size
4.6M
SHA-1
4669c9a4b4a021e1adcdb6e3349ef9996bf7382a
MD5
30fc1b38f8ffd31e8f347c736043164e
CRC-32
bfcea9c9
File type
Windows executable
First seen
2014-02-03

Example 3

File Information

Size
3.3M
SHA-1
6b21fe2d1c0f2542e08390e08197c3a4068028a6
MD5
1d6bbff913563c65708c83bc3129d9d0
CRC-32
8d680c3b
File type
PK ZIP archive
First seen
2014-02-04

scarica Prova gratuita dei prodotti Sophos
Scarica subito