Troj/MSIL-KDO

    Category: Viruses and SpywareProtection available since:03 Aug 2017 12:25:24 (GMT)
    Type: TrojanLast Updated:03 Aug 2017 12:25:24 (GMT)
    Prevalence: Small Number of Reports

    Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

    Troj/MSIL-KDO exhibits the following characteristics:

    File Information

    Size
    259K
    SHA-1
    01a46c57176fb6fe8e11d27931f3cd9988299142
    MD5
    0617afb23e12f7641f236a643d19ec71
    CRC-32
    53eb80cd
    File type
    Windows executable
    First seen
    2017-08-03

    Runtime Analysis

    Dropped Files
    • c:\Documents and Settings\test user\Application Data\Microsoft\Protect\S-1-5-21-1202660629-1454471165-1275210071-1003\e6dbc35a-3729-49c5-8afa-f2d1bfcc565b
      Size
      388
      SHA-1
      e96af16b1b77528e857eb57ba64c943ffda72f86
      MD5
      22fc89ed8d29309e8b2275ff7bd38403
      CRC-32
      49475f5d
      File type
      Unspecified binary - probably data
      First seen
      2017-08-03
    • c:\Documents and Settings\test user\Application Data\CF2254\460F75.exe
    Modified Files
    • %PROFILE%\Application Data\Microsoft\Protect\S-1-5-21-1202660629-1454471165-1275210071-1003\Preferred
    • %PROFILE%\Application Data\Microsoft\Crypto\RSA\S-1-5-21-1202660629-1454471165-1275210071-1003\844641068f15df8c2e25fea3578f59c8_26c19984-2a01-45b5-a7b3-a568af60c200
    Processes Created
    • c:\windows\microsoft.net\framework\v2.0.50727\installutil.exe
    • c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
    DNS Requests
    • randox.co

    Download Sophos HomeDownload
    Sophos Home

    Free business-grade security for the home.

    Endpoint Protection