Troj/MSIL-KQX

Category: Viruses and Spyware Protection available since:06 Dec 2017 17:00:18 (GMT)
Type: Trojan Last Updated:06 Dec 2017 17:00:18 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Troj/MSIL-KQX exhibits the following characteristics:

File Information

Size
242K
SHA-1
22728838fd7bc0aadce1e3cfd94800347291ce8f
MD5
2c69f9a7b6f655460c69f71275910f1c
CRC-32
b1d0f14f
File type
Windows executable
First seen
2017-12-06

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\AppData\Local\Temp\FolderN\name.exe.bat
    Size
    222
    SHA-1
    8730db96dd399d1fdbf333052e8b410bfeab4450
    MD5
    331b483a99ed22ee11654221f506b656
    CRC-32
    ad5adc07
    File type
    ASCII text / 8-bit Unicode Transformation Format
    First seen
    2017-12-06
  • c:\Documents and Settings\test user\Application Data\Microsoft\Protect\S-1-5-21-1202660629-1454471165-1275210071-1003\9e77670f-524f-4706-a080-c09bdba38ab5
    Size
    388
    SHA-1
    e67f7a864ea0ef4c804f7a4255326f514d7205c0
    MD5
    0da284e0d045b51c08c530d547592086
    CRC-32
    8df54396
    File type
    Unspecified binary - probably data
    First seen
    2017-12-06
  • c:\Documents and Settings\test user\Application Data\CF2254\460F75.exe
Modified Files
  • %PROFILE%\Application Data\Microsoft\Crypto\RSA\S-1-5-21-1202660629-1454471165-1275210071-1003\844641068f15df8c2e25fea3578f59c8_26c19984-2a01-45b5-a7b3-a568af60c200
  • %PROFILE%\Application Data\Microsoft\Protect\S-1-5-21-1202660629-1454471165-1275210071-1003\Preferred
Registry Keys Created
  • HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows
    Load
    C:\DOCUME~1\support\LOCALS~1\Temp\FolderN\name.exe.lnk
Processes Created
  • c:\docume~1\support\locals~1\temp\svhost.exe
  • c:\windows\system32\cmd.exe
  • c:\windows\system32\find.exe
  • c:\windows\system32\reg.exe
  • c:\windows\system32\tasklist.exe
DNS Requests
  • u0432678.cp.regruhosting.ru

download Try Sophos products for free
Download now