Troj/VB-FBT

Category: Viruses and Spyware Protection available since:17 Dec 2010 04:16:35 (GMT)
Type: Trojan Last Updated:17 Dec 2010 04:16:35 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of Troj/VB-FBT include:

Example 1

File Information

Size
164K
SHA-1
8e24a25bccb8534be0fd5022704ca5e33d647e88
MD5
08842ff2db259e50882f273ad0efed6b
CRC-32
41ea5ab1
File type
application/x-ms-dos-executable
First seen
2010-12-17

Other vendor detection

Avira
TR/Dropper.Gen
Kaspersky
Trojan.Win32.VBKrypt.aeqb

Runtime Analysis

Copies Itself To
  • C:\WINDOWS\gwdrive32.exe
Registry Keys Created
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run
    Microsoft Driver Setup
    C:\WINDOWS\gwdrive32.exe
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
    Microsoft Driver Setup
    C:\WINDOWS\gwdrive32.exe
Processes Created
  • c:\windows\gwdrive32.exe
DNS Requests
  • aaaaaaaa.schooluni.us

Example 2

File Information

Size
164K
SHA-1
c8e6290155c21f120c42c51b32b8ef3b766c5b44
MD5
8315a31ef03cf278e07bae03fe262d75
CRC-32
acd42c2b
File type
application/x-ms-dos-executable
First seen
2010-12-17

Other vendor detection

Avira
TR/Dropper.Gen
Kaspersky
Trojan.Win32.VBKrypt.aeqb

Runtime Analysis

Copies Itself To
  • C:\WINDOWS\gwdrive32.exe
Registry Keys Created
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run
    Microsoft Driver Setup
    C:\WINDOWS\gwdrive32.exe
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
    Microsoft Driver Setup
    C:\WINDOWS\gwdrive32.exe
Processes Created
  • c:\windows\gwdrive32.exe
DNS Requests
  • aaaaaaaa.schooluni.us

Example 3

File Information

Size
164K
SHA-1
dbd11a27478149395f8b00928ead3b3bed2a7fcd
MD5
3a88ca8ed80d41a22128694d05cb16ed
CRC-32
ea0c8dcd
File type
application/x-ms-dos-executable
First seen
2010-12-17

Runtime Analysis

Copies Itself To
  • C:\WINDOWS\gwdrive32.exe
Registry Keys Created
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run
    Microsoft Driver Setup
    C:\WINDOWS\gwdrive32.exe
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
    Microsoft Driver Setup
    C:\WINDOWS\gwdrive32.exe
Processes Created
  • c:\windows\gwdrive32.exe
DNS Requests
  • nnnnnnnn.schooluni.us