Troj/MSIL-ACW

Category: Viruses and Spyware Protection available since:20 Aug 2014 08:55:42 (GMT)
Type: Trojan Last Updated:20 Aug 2014 08:55:42 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/MSIL-ACW exhibits the following characteristics:

File Information

Size
321K
SHA-1
7eac63dab5c1cca6503ac516c7419de4b573e634
MD5
8848a8d1850028df2ff603af94262bf6
CRC-32
13e8da03
File type
Windows executable
First seen
2014-08-20

Runtime Analysis

Copies Itself To
  • c:\Documents and Settings\test user\Application Data\Microsoft\Windows\Acctres.exe
Dropped Files
  • c:\Documents and Settings\test user\Application Data\dclogs\2014-08-20-4.dc
    Size
    33
    SHA-1
    1290da7261e1b016b46f8f57001a12c11c8dade5
    MD5
    03cbaa36dce9b3555922808fdc223652
    CRC-32
    36019743
    File type
    ASCII text / 8-bit Unicode Transformation Format
    First seen
    2014-08-20
  • c:\Documents and Settings\test user\Application Data\Microsoft\Windows\WUDHost.exe
    Size
    7.5K
    SHA-1
    41e9f8c95bb3138ed55e726ce5362f242ec17f00
    MD5
    fe48a871c548a23208de1b2a3178322a
    CRC-32
    b52e35fe
    File type
    Windows executable
    First seen
    2014-08-19
Processes Created
  • c:\Documents and Settings\test user\application data\microsoft\windows\wudhost.exe
  • c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
DNS Requests
  • boss.milano22.com

download Try Sophos products for free
Download now