Troj/Cridex-DZ

Categoria: Virus e spyware Opzioni di protezione ora disponibili:21 gen 2014 13:00:57 (GMT)
Tipo: Trojan Ultimo aggiornamento:21 gen 2014 13:00:57 (GMT)
Prevalenza:

Download Scaricate il nostro Virus Removal Tool: è gratis! - Scoprite le minacce che sono sfuggite al vostro antivirus

Troj/Cridex-DZ exhibits the following characteristics:

File Information

Size
194K
SHA-1
7e4bedb77a425ec0d4ec250ad751aa36815cb125
MD5
84af41b1ab1c9f317b67fc0b6c4b70a9
CRC-32
d75cedd7
File type
application/x-ms-dos-executable
First seen
2014-01-21

Runtime Analysis

Copies Itself To
  • c:\Documents and Settings\test user\Application Data\KB00954719.exe
Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings
    GlobalUserOffline
    0x00000000
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    KB00954719.exe
    "c:\Documents and Settings\test user\Application Data\KB00954719.exe"
  • HKCU\Software\Microsoft\Windows NT\S798CA163
    (Default)
    3c 73 65 74 74 69 6e 67 73 20 68 61 73 68 3d 22 38 62 64 61 61 35 62 33 36 63 32 66 35 37 31 61 65 32 62 31 63 34 64 64 66 31 64 32 62 61 31 32 31 39 39 66 33 61 32 64 22 3e 3c 68 74 74 70 73 68 6f 74 73 3e 3c 75 72 6c 20 74 79 70 65 3d 22 64 65 6e 79 22 3e 5c 2e 28 63 73 73 7c 6a 73 29 28 24 7c 5c 3f 29 3c 2f 75 72 6c 3e 3c 75 72 6c 20 63 6f 6e 74 65 6e 74 54 79 70 65 3d 22 5e 74 65 78 74 2f 28 68 74 6d 6c 7c 70 6c 61 69 6e 29 22 3e 5c 2e 63 6f 6d 2f 6b 31 2f 3c 2f 75 72 6c 3e 3c 75 72 6c 20 63 6f 6e 74 65 6e 74 54 79 70 65 3d 22 5e 74 65 78 74 2f 28 68 74 6d 6c 7c 70 6c 61 69 6e 29 22 3e 2f 61 63 68 2f 3c 2f 75 72 6c 3e 3c 75 72 6c 20 63 6f 6e 74 65 6e 74 54 79 70 65 3d 22 5e 74 65 78 74 2f 28 68 74 6d 6c 7c 70 6c 61 69 6e 29 22 3e 2f 61 75 74 68 65 6e 74 [... 143235 intervening characters ...] 63 65 6d 65 6e 74 3e 3c 2f 6d 6f 64 69 66 79 3e 3c 2f 61 63 74 69 6f 6e 73 3e 3c 2f 68 74 74 70 69 6e 6a 65 63 74 3e 3c 2f 68 74 74 70 69 6e 6a 65 63 74 73 3e 3c 2f 73 65 74 74 69 6e 67 73 3e
  • HKCU\Software\Microsoft\Windows NT\CC73E6913
    (Default)
Processes Created
  • c:\Documents and Settings\test user\application data\kb00954719.exe
  • c:\windows\system32\cmd.exe
DNS Requests
  • godaddy-up.ru
  • lightham.ru
  • travodoktor.ru

scarica Prova gratuita dei prodotti Sophos
Scarica subito