HPsus/Palevo-A

Categoria: File e comportamenti sospetti
Tipo: Suspicious behavior

Download Scaricate il nostro Virus Removal Tool: è gratis! - Scoprite le minacce che sono sfuggite al vostro antivirus

HPsus/Palevo-A exhibits the following characteristics:

File Information

Size
72K
SHA-1
b05ed5d64529eeb96ba3085d75a2617c80c74d1a
MD5
2cc438f7daaa7558f5b9cf20a6117d4c
CRC-32
a1c8c0dc
File type
application/x-ms-dos-executable
First seen
2011-04-07

Runtime Analysis

Copies Itself To
  • c:\Documents and Settings\test user\fswagz.exe
Registry Keys Created
  • HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
    Taskman
    c:\Documents and Settings\test user\fswagz.exe
Processes Created
  • c:\windows\system32\svchost.exe
DNS Requests
  • jebena.ananikolic.su
  • peer.pickeklosarske.ru

scarica Prova gratuita dei prodotti Sophos
Scarica subito