Troj/Inject-AKK

Categoria: Virus e spyware Opzioni di protezione ora disponibili:15 giu 2013 06:26:55 (GMT)
Tipo: Trojan Ultimo aggiornamento:15 giu 2013 06:26:55 (GMT)
Prevalenza:

Download Scaricate il nostro Virus Removal Tool: è gratis! - Scoprite le minacce che sono sfuggite al vostro antivirus

Troj/Inject-AKK exhibits the following characteristics:

File Information

Size
247K
SHA-1
9cc4c4bae1b78e3b44e20bffdc43f8e9a08cc89b
MD5
1196df30d6976b277c48a2b7a9524388
CRC-32
b297b69a
File type
Windows executable
First seen
2013-06-14

Runtime Analysis

Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4
    2500
    0x00000003
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2
    2500
    0x00000003
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0
    2500
    0x00000003
  • HKCU\Software\Microsoft\Internet Explorer\Main
    NoProtectedModeBanner
    0x00000001
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    ctfmon32.exe
    C:\DOCUME~1\ALLUSE~1\APPLIC~1\rundll32.exe C:\DOCUME~1\ALLUSE~1\APPLIC~1\o70qe.dat,XFG00
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1
    2500
    0x00000003
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3
    2500
    0x00000003
Registry Keys Modified
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\0
    1609
    0x00000000
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\1
    1609
    0x00000000
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\2
    1609
    0x00000000
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\4
    1609
    0x00000000
Processes Created
  • c:\docume~1\alluse~1\applic~1\rundll32.exe
IP Connections
  • 37.139.53.199:443
  • 37.139.53.199:80
  • 66.197.217.85:443
DNS Requests
  • whatwillber.com

scarica Prova gratuita dei prodotti Sophos
Scarica subito