Troj/Reveton-DC

Categoria: Virus e spyware Opzioni di protezione ora disponibili:24 lug 2013 11:42:17 (GMT)
Tipo: Trojan Ultimo aggiornamento:24 lug 2013 11:42:17 (GMT)
Prevalenza:

Download Scaricate il nostro Virus Removal Tool: è gratis! - Scoprite le minacce che sono sfuggite al vostro antivirus

Troj/Reveton-DC exhibits the following characteristics:

File Information

Size
113K
SHA-1
5511713824d10bf14fc101dd61202f61b1e30adc
MD5
2da9385b23acc9e223a2cbc3fb0041b9
CRC-32
1cdab516
File type
Windows executable
First seen
2013-07-23

Other vendor detection

Avira
TR/Reveton.N.267

Runtime Analysis

Copies Itself To
  • C:\Documents and Settings\All Users\Application Data\0jmrwi.dat
  • c:\Documents and Settings\test user\Local Settings\Temp\0jmrwi.dat
Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\iwrmj0.js
    Size
    3.2K
    SHA-1
    a288e5a214de221ebafe74676e98450f3f1fdf93
    MD5
    1fc9e5599cd4929a57d5c87e309382e6
    CRC-32
    d68f99ea
    File type
    JavaScript
    First seen
    2013-07-24
  • c:\Documents and Settings\test user\Local Settings\Temp\iwrmj0.pad
    Size
    91M
    SHA-1
    0ce06779cb2c00928b420c49b54ce66ac597efc1
    MD5
    0b269a620960171aef67eded5626eff0
    CRC-32
    3ef01b58
    File type
    Unspecified binary - probably data
    First seen
    2013-07-24
Processes Created
  • c:\windows\system32\rundll32.exe
IP Connections
  • 64.191.122.10:80

scarica Prova gratuita dei prodotti Sophos
Scarica subito