Troj/Mdrop-GOF

Category: Viruses and SpywareProtection available since:26 Feb 2015 00:44:55 (GMT)
Type: TrojanLast Updated:26 Feb 2015 00:44:55 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/Mdrop-GOF include:

Example 1

File Information

Size
1.2M
SHA-1
5ffe420a3cc848024884db8e2cfed68c47368dae
MD5
5eabc9c54b73fffb5f3fddb37a653d7b
CRC-32
811c460c
File type
Windows executable
First seen
2015-02-25

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\1541.pdf
    Size
    182K
    SHA-1
    c8fe2296565c211e019cdad3918a5736d4b12d44
    MD5
    93176df76e351b3ea829e0e6c6832bdf
    CRC-32
    6f79f534
    File type
    Adobe Portable Document Format (PDF)
    First seen
    2015-02-03
  • c:\Documents and Settings\test user\Local Settings\Temp\Acr4211.tmp
    Size
    358
    SHA-1
    6ec127a146a3635df60f4bd05068fe052be119e0
    MD5
    2241f92a93257e4bc5b9a474692cecce
    CRC-32
    206016af
    File type
    Adobe Portable Document Format (PDF)
    First seen
    2015-02-25
  • c:\Documents and Settings\test user\Local Settings\Temp\reader_sl.exe
    Size
    557K
    SHA-1
    bf9d3a45273608caf90084c1157de2074322a230
    MD5
    43c012086c1ae0a67c38b0926d6cba3f
    CRC-32
    ffbb4c3b
    File type
    Windows executable
    First seen
    2015-02-25
Processes Created
  • c:\docume~1\support\locals~1\temp\reader_sl.exe
  • c:\program files\adobe\reader 8.0\reader\acrord32.exe

Example 2

File Information

Size
1.2M
SHA-1
9f8f1672594a6fbac43793c857dd7718e75f328a
MD5
c79bf9a04913a5018ab8de65ffd1060f
CRC-32
67d6eb6f
File type
Windows executable
First seen
2015-02-25

Example 3

File Information

Size
1.2M
SHA-1
a38ea2533e3dfa6339726aafd4bc2bc7e3eec529
MD5
6f535a0f5c7f710ec4739e52f35a5673
CRC-32
1a793490
File type
Windows executable
First seen
2015-02-25

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\6538.pdf
    Size
    182K
    SHA-1
    c8fe2296565c211e019cdad3918a5736d4b12d44
    MD5
    93176df76e351b3ea829e0e6c6832bdf
    CRC-32
    6f79f534
    File type
    Adobe Portable Document Format (PDF)
    First seen
    2015-02-03
  • c:\Documents and Settings\test user\Local Settings\Temp\Acr7585.tmp
    Size
    358
    SHA-1
    0f109b2e37810a9b0361c0e6685f9d756e317a3d
    MD5
    3f1037ebca557e1d44210ef117093174
    CRC-32
    7bfc3ca5
    File type
    Adobe Portable Document Format (PDF)
    First seen
    2015-02-25
  • c:\Documents and Settings\test user\Local Settings\Temp\reader_sl.exe
    Size
    558K
    SHA-1
    23e20c523b9970686d913360d438c88e6067c157
    MD5
    f0a6436ffee12558a434a0fc24b3b33f
    CRC-32
    6bed80b7
    File type
    Windows executable
    First seen
    2015-02-25
Processes Created
  • c:\docume~1\support\locals~1\temp\reader_sl.exe
  • c:\program files\adobe\reader 8.0\reader\acrord32.exe