Mal/Behav-130

Categoría: Virus y programas espía Protección disponible desde:03 jul 2007 11:53:26 (GMT)
Tipo: Malicious behavior Última actualización:09 sep 2016 05:47:08 (GMT)
Predominio:

Download Descargue nuestra herramienta gratuita para la eliminación de virus - Encuentre las amenazas no detectadas por su antivirus

Examples of Mal/Behav-130 include:

Example 1

File Information

Size
432K
SHA-1
000390fd085a0c01aa864a8603e94a725be783b3
MD5
9d275f6eb0a7b141d6eb8b531f6008d6
CRC-32
6346f53f
File type
Windows executable
First seen
2016-06-20

Runtime Analysis

HTTP Requests
  • http://www.vidanet.hpg.com.br/vida/imglog.jpg
  • http://www.vidanet.hpg.com.br/vida/msmsn.jpg
  • http://www.vidanet.hpg.com.br/vida/orkut.jpg
  • http://www.vidanet.hpg.com.br/vida/process.jpg
  • http://www.youtube.com/v/ORl_70X2spY%26hl=pt-br%26fs=1
DNS Requests
  • www.vidanet.hpg.com.br
  • www.youtube.com

Example 2

File Information

Size
445K
SHA-1
002677aa40b9bf63a522ddb58e3d694fb9a2dab9
MD5
fdf1da9cc92846bc2ea05f87cb40fcdb
CRC-32
2f6c30c5
File type
Windows executable
First seen
2015-07-20

Runtime Analysis

HTTP Requests
  • http://66.63.160.236/htmldocs/data/bertu.exe
IP Connections
  • 66.63.160.236:80

Example 3

File Information

Size
878K
SHA-1
002d2d3426a75b0a2bf69f94c3cc9e5c67e48a13
MD5
51e588fc12e94aec394999e509312c63
CRC-32
ed9b9756
File type
Windows executable
First seen
2011-08-05

Runtime Analysis

Copies Itself To
  • C:\Documents and Settings\All Users\Application Data\test_item.exe
Registry Keys Created
  • HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
    test_item.exe
    C:\Documents and Settings\All Users\Application Data\test_item.exe
DNS Requests
  • smtp.premiata.com.br

descargar Pruebe los productos de Sophos totalmente gratis
Descargue una evaluación gratuita