Troj/Strictor-B

Categoria: Virus e spyware Opzioni di protezione ora disponibili:09 apr 2014 16:10:27 (GMT)
Tipo: Trojan Ultimo aggiornamento:09 apr 2014 16:10:27 (GMT)
Prevalenza:

Download Scaricate il nostro Virus Removal Tool: è gratis! - Scoprite le minacce che sono sfuggite al vostro antivirus

Troj/Strictor-B exhibits the following characteristics:

File Information

Size
189K
SHA-1
f4617365d608957847c9051cce05baef9bfd0ee1
MD5
c3783539ffd556ada6e596fe0be61862
CRC-32
246f01dc
First seen
2014-03-20

Runtime Analysis

Copies Itself To
  • C:\WINDOWS\system32\skyair.exe
Registry Keys Created
  • HKLM\SYSTEM\CurrentControlSet\Services\Microsoft\Enum
    NextInstance
    0x00000001
  • HKLM\SYSTEM\CurrentControlSet\Services\Microsoft\Security
    Security
    □□□@□□□□□□□□□□□□□□@□□□□□□□□□□□ □□□□□□□□□□□ □□@□□□□□□□□□□□□□□□□□□□□□□□□□□ □□□□□@□□□□□□□□@□□□□□ □□□□□□□□□□□□□□ □□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□□@□□□□□ □□□□□□□□□□□□□□□□□□□□□□□□□□□□□ □□□□□□□□□□□□□□□□□□□□0□□□□□□□□□□□□□□□□□ □□□□□□□□□□□□□□□□□ □□□□□
  • HKLM\SYSTEM\CurrentControlSet\Services\Microsoft
    ObjectName
    LocalSystem
Processes Created
  • c:\windows\system32\skyair.exe
DNS Requests
  • www.mtjyzx.com

scarica Prova gratuita dei prodotti Sophos
Scarica subito