Troj/Fareit-DPA

Category: Viruses and Spyware Protection available since:29 Aug 2017 05:44:24 (GMT)
Type: Trojan Last Updated:29 Aug 2017 05:44:24 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/Fareit-DPA exhibits the following characteristics:

File Information

Size
1.2M
SHA-1
f7a6c4feba364a03c098b0012a25d64cee2070bd
MD5
52851be60b58e70bfe4efc770dcb5cf0
CRC-32
8556ef59
File type
Windows executable
First seen
2017-08-27

Runtime Analysis

Registry Keys Created
  • HKCR\.key
    (Default)
    regfile
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    test_item.exe
    c:\Documents and Settings\test user\Application Data\ASound.exe
  • HKCU\Software\WinRAR
    HWID
    {C□□0□@7□`9□ -□01□`1□□4□0E□□-□ E□□3□□4□00□□6□□C□09□ F□□}□
Processes Created
  • c:\windows\system32\cmd.exe
HTTP Requests
  • http://simdisposable.info/wordpress/wp-includes/images/media/office/microsoft/shit.exe
DNS Requests
  • simdisposable.info

download Try Sophos products for free
Download now