Zona Installer

Categoria: Adware e PUA Opzioni di protezione ora disponibili:20 dic 2013 03:36:59 (GMT)
Tipo: Unspecified PUA Ultimo aggiornamento:20 dic 2013 03:36:59 (GMT)

Download Scaricate il nostro Virus Removal Tool: è gratis! - Scoprite le minacce che sono sfuggite al vostro antivirus

Examples of Zona Installer include:

Example 1

File Information

Size
199K
SHA-1
00075c1299dd2c7538047e7228bccaf859fcb108
MD5
68f71874671f132fcc159bfa56b1ad24
CRC-32
38918436
File type
Windows executable
First seen
2013-11-25

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\zon3.tmp
    Size
    5.1K
    SHA-1
    dba37d29c3ef9ba109b062a31cc0c93fc57f4079
    MD5
    9df9d5c87f48cb30a1a2b5e835c83ccb
    CRC-32
    74d6c619
    File type
    JPEG Interchange Format
    First seen
    2013-11-25
  • C:\Program Files\Zona\utils.jar
    Size
    38K
    SHA-1
    a5a9cef779b57f3a0034d9d979c1e790d261ea1e
    MD5
    e6786fb790b55e1817018ab5bbc1c03f
    CRC-32
    b1fa6513
    File type
    PK ZIP archive
    First seen
    2013-09-26
  • C:\Program Files\Zona\License_ru.rtf
  • c:\Documents and Settings\test user\Application Data\Zona\init.xml
    Size
    328
    SHA-1
    f46212d7df88496f3b71eb868cb331f47661e6fc
    MD5
    233e0d82d7fdad47449237d45dd4191a
    CRC-32
    de8859f0
    File type
    Extensible Markup Language (XML)
    First seen
    2013-11-25
  • c:\Documents and Settings\test user\Local Settings\Temp\hd.vbs
  • c:\Documents and Settings\test user\Local Settings\Temp\zon2.tmp
    Size
    506
    SHA-1
    660adf1d0c4e6d02cbcb8dd47bf2d49b7edaf318
    MD5
    bd5fe1b0c004a93fb1e5dba56ee39ec9
    CRC-32
    f5fda2f6
    File type
    Hypertext Markup Language
    First seen
    2013-08-14
  • C:\Program Files\Zona\License_en.rtf
  • c:\Documents and Settings\test user\Local Settings\Temp\ZonaInstall.log
    Size
    6.1K
    SHA-1
    004ee21ef6bf81a6f794b23f6007d12243a261d3
    MD5
    55d78efdfd5783770e63fbb685eb1569
    CRC-32
    e09cf30c
    File type
    Configuration Data File (generic)
    First seen
    2013-11-25
  • C:\Program Files\Zona\License_uk.rtf
  • c:\Documents and Settings\test user\Application Data\Zona\tmp\Zona.7z
    Size
    6.3M
    SHA-1
    e60b1b44341a4724bd542e7482316c75d07e6d75
    MD5
    8565a71a8a2117c63b5b5aeca49ccba4
    CRC-32
    e959e44d
    File type
    Unspecified binary - probably data
    First seen
    2013-11-22
Registry Keys Created
  • HKCU\Software\Pinstall
    i_user_id
    2B80B987-42D7-40EE-8DE7-36BA31ED97C5
  • HKCU\Software\Zona
    DownloadsDir
    c:\Documents and Settings\test user\My Documents\Zona Downloads
Processes Created
  • c:\program files\java\jre6\bin\javaw.exe
  • c:\windows\system32\cscript.exe
HTTP Requests
  • http://dl.zona.ru/Zona.7z
  • http://i3.x8.net/T/nAAS_X.jpeg
  • http://stat.miniload.org/installer.html
DNS Requests
  • dl.zona.ru
  • i3.x8.net
  • stat.miniload.org

Example 2

File Information

Size
130K
SHA-1
05240cc69901fd23507daf8fc2136b050a692cf3
MD5
6919b6b425b7c4b72eff646485383a0a
CRC-32
111a65da
File type
Windows executable
First seen
2013-08-07

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\zon3.tmp
    Size
    8.7K
    SHA-1
    f8619cea50690d0eb723408ac27883430fe57d93
    MD5
    520e7421ef6c1c616e7d95b44cdc277a
    CRC-32
    27dc0880
    File type
    JPEG Interchange Format
    First seen
    2013-09-02
  • c:\Documents and Settings\test user\Application Data\Zona\init.xml
    Size
    364
    SHA-1
    9734c79833cdba79c5f693addf1aed667a6836b7
    MD5
    e673313d89b1587dce0f646737c2f0d2
    CRC-32
    b2c93b74
    File type
    Extensible Markup Language (XML)
    First seen
    2013-09-02
  • C:\Program Files\Zona\License_ru.rtf
  • c:\Documents and Settings\test user\Local Settings\Temp\Zona.7z
    Size
    3.7M
    SHA-1
    e63dc31bc0dad0197074e8155da2cc4d38d6c3d4
    MD5
    d471d633d07198c92795f5bce1e86fd4
    CRC-32
    4d5585b2
    File type
    Unspecified binary - probably data
    First seen
    2013-08-29
  • C:\Program Files\Zona\License_en.rtf
  • C:\Program Files\Zona\License_uk.rtf
  • c:\Documents and Settings\test user\Local Settings\Temp\ZonaInstall.log
    Size
    3.8K
    SHA-1
    4f00399628b0318c8767a1974ff15e0b2f0de77d
    MD5
    24c0f2a2c7225d6777d79039b3fa87fb
    CRC-32
    1268fceb
    File type
    Configuration Data File (generic)
    First seen
    2013-09-02
  • c:\Documents and Settings\test user\Local Settings\Temp\hd.vbs
  • C:\Program Files\Zona\utils.jar
  • c:\Documents and Settings\test user\Local Settings\Temp\zon2.tmp
    Size
    13
    SHA-1
    0149f7e221757310de8bd27f2a7f6f189d31c47b
    MD5
    0cf8bcc39d6ebc7a2dbefbf078ea3739
    CRC-32
    94f0ca14
    File type
    ASCII text / 8-bit Unicode Transformation Format
    First seen
    2013-09-02
Registry Keys Created
  • HKCU\Software\Zona
    installDate
    1378153633571
Processes Created
  • c:\windows\system32\cscript.exe
HTTP Requests
  • http://dl.zona.ru/installer.html
  • http://i2.x8.net/T/FmBF_X.jpeg
  • http://zona.ru/installer.html
DNS Requests
  • dl.zona.ru
  • i2.x8.net
  • zona.ru

Example 3

File Information

Size
200K
SHA-1
05c65b04be343c2c2471ded3526024ed7dbc58c7
MD5
9e3d5bbffe3072c7eea98422fbd6857c
CRC-32
05a71ed1
File type
Windows executable
First seen
2013-12-19

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Application Data\Zona\init.xml
    Size
    273
    SHA-1
    23b8290d7fefdf21fe178a71fae9acfe84f261b9
    MD5
    8b1c2c0277c7ba202e9fc732f7b010f2
    CRC-32
    3cb2df65
    File type
    Extensible Markup Language (XML)
    First seen
    2013-11-09
  • c:\Documents and Settings\test user\Application Data\Zona\tmp\Zona.7z
    Size
    6.2M
    SHA-1
    564a6c6c51d43e1e514e09f51239958751babafe
    MD5
    f8d37896186e4f0a53529f12d98383e6
    CRC-32
    25286e34
    File type
    Unspecified binary - probably data
    First seen
    2013-12-18
  • c:\Documents and Settings\test user\Local Settings\Temp\hd.vbs
  • C:\Program Files\Zona\License_en.rtf
    Size
    5.9K
    SHA-1
    2b423e03125ae74ffaf9b24d608418c27862fe03
    MD5
    3f6614061f1b3e2380546d1952eec0b7
    CRC-32
    dfec83fd
    File type
    Rich Text Format (RTF)
    First seen
    2013-11-24
  • C:\Program Files\Zona\License_ru.rtf
    Size
    24K
    SHA-1
    b20be2c43d1ac17079654a4df37962ec513b01c5
    MD5
    f4fc6db44d17cc884476b416f1ba4ee4
    CRC-32
    c8ca1564
    File type
    Rich Text Format (RTF)
    First seen
    2013-11-24
  • c:\Documents and Settings\test user\Local Settings\Temp\ZonaInstall.log
    Size
    5.5K
    SHA-1
    b7a5f53041c3728aabab1f418f07b81c69560108
    MD5
    c5cd4da6f51b44daa5488335c37b4784
    CRC-32
    01e5d0c0
    File type
    Configuration Data File (generic)
    First seen
    2013-12-19
  • c:\Documents and Settings\test user\Local Settings\Temp\zon3.tmp
    Size
    9.0K
    SHA-1
    c934aa7f38f97e35cb82d42a0632b81ddb930d1e
    MD5
    a7019e063bb0842f1a9cdf31a4f51d4b
    CRC-32
    e74cdc35
    File type
    JPEG Interchange Format
    First seen
    2013-11-09
  • C:\Program Files\Zona\utils.jar
    Size
    38K
    SHA-1
    a5a9cef779b57f3a0034d9d979c1e790d261ea1e
    MD5
    e6786fb790b55e1817018ab5bbc1c03f
    CRC-32
    b1fa6513
    File type
    PK ZIP archive
    First seen
    2013-09-26
  • c:\Documents and Settings\test user\Local Settings\Temp\zon2.tmp
    Size
    47
    SHA-1
    b2ed1fb2670647f106c407b1ad931f41209b9b19
    MD5
    72e7a7e2ef2dacc19eaa0f02c870a55f
    CRC-32
    888de615
    File type
    Unspecified Markup Language
    First seen
    2013-12-19
Registry Keys Created
  • HKCU\Software\Pinstall
    i_user_id
    E8D8E76E-D134-44F9-A820-6CA8328CADE5
  • HKCU\Software\Zona
    DownloadsDir
    c:\Documents and Settings\test user\My Documents\Zona Downloads
Processes Created
  • c:\windows\system32\cscript.exe
HTTP Requests
  • http://dl.zona.ru/Zona.7z
  • http://dl.zona.ru/appdata.7z
  • http://i2.x8.net/T/93X_X.jpeg
  • http://stat.miniload.org/installer.html
DNS Requests
  • dl.zona.ru
  • i2.x8.net
  • stat.miniload.org

scarica Prova gratuita dei prodotti Sophos
Scarica subito