Troj/Agent-SHG

Category: Viruses and SpywareProtection available since:29 Jun 2011 23:03:28 (GMT)
Type: TrojanLast Updated:29 Jun 2011 23:03:28 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/Agent-SHG include:

Example 1

File Information

Size
262
SHA-1
3e835168b78f02436971e1e4be0875b1d126e6e7
MD5
957d8a3432a720ec5be5824a1b1a90aa
CRC-32
dac541c8
File type
application/octet-stream
First seen
2011-06-28

Example 2

File Information

Size
102K
SHA-1
4d5f651d93446f4e30327830d663fe7335d47584
MD5
b6f5c7d3ae75e4c27c8bd2b67aaa02ef
CRC-32
500d4358
File type
application/x-ms-dos-executable
First seen
2011-06-28

Runtime Analysis

Dropped Files
  • C:\WINDOWS\system32\system.bat
    Size
    39
    SHA-1
    8346795f6632fe979bee72d607919774be40d69d
    MD5
    2f91e3f73643aa77df808077b3fc2863
    CRC-32
    f2b50d43
    File type
    application/octet-stream
    First seen
    2011-06-28
  • C:\WINDOWS\system32\system.reg
    Size
    262
    SHA-1
    3e835168b78f02436971e1e4be0875b1d126e6e7
    MD5
    957d8a3432a720ec5be5824a1b1a90aa
    CRC-32
    dac541c8
    File type
    application/octet-stream
    First seen
    2011-06-28
Registry Keys Created
  • HKCU\Software\WinRAR SFX
    C%%WINDOWS%%system32%%
    C:\WINDOWS\\system32\\
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    system
    C:\WINDOWS\system32\system.bat
Registry Keys Modified
  • HKCU\Software\Microsoft\Internet Explorer\Main
    Start Page
    http://www.zhu911.org
Processes Created
  • c:\windows\regedit.exe
  • c:\windows\system32\cmd.exe