W32/Stratork-A

Category: Viruses and Spyware Protection available since:25 Apr 2012 02:50:28 (GMT)
Type: Win32 worm Last Updated:25 Apr 2012 02:50:28 (GMT)
Prevalence: Small Number of Reports

Download Download our free Virus Removal Tool - Find and remove threats your antivirus missed

Examples of W32/Stratork-A include:

Example 1

File Information

Size
533K
SHA-1
2dd624a04690164dfa52dbee28c481070cb179c8
MD5
192e9a1dad3ba962191cf7dc14ff0c31
CRC-32
114e8be6
File type
application/x-ms-dos-executable
First seen
2012-03-20

Other vendor detection

Kaspersky
Trojan-Banker.Win32.Banker.soau

Runtime Analysis

Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    Windows Live
    C:\WINDOWS\system32\fsrun.exe
IP Connections
  • 180.68.206.230:80

Example 2

File Information

Size
533K
SHA-1
9587abff1bb26b4f030ee9579d9c2144e233fe30
MD5
05dcb343be299b16ada82c83bbb4b20b
CRC-32
63d126d6
File type
application/x-ms-dos-executable
First seen
2012-01-05

Other vendor detection

Kaspersky
Trojan-Banker.Win32.Banker.soau

Runtime Analysis

Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    Windows Live
    C:\WINDOWS\system32\fsrun.exe
IP Connections
  • 180.68.206.230:80

Example 3

File Information

Size
622K
SHA-1
fa0e6a8d1c4cd244ce78fe4ed97fe340c3035200
MD5
e4e534317b90e6007945eaf329ce0b6f
CRC-32
96b76121
File type
application/x-ms-dos-executable
First seen
2012-02-02

Other vendor detection

Kaspersky
Trojan-Banker.Win32.Banker.soau

Runtime Analysis

Registry Keys Created
  • HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    Windows Live
    C:\WINDOWS\system32\fsrun.exe
IP Connections
  • 180.68.206.230:80