Live Soft Action

Catégorie: Adwares et PUA Protection disponible depuis:29 janv. 2014 05:51:48 (GMT)
Type: Adware Dernière mise à jour :14 févr. 2016 10:51:13 (GMT)

Download Téléchargez notre outil gratuit de suppression des virus - Découvrez ce que votre antivirus actuel n'a pas su détecter

Examples of Live Soft Action include:

Example 1

File Information

Size
659K
SHA-1
000de08c00a7f49cf607d742835fa1f0402bc3a8
MD5
480fb8fb31428d8c4e415a7a74fd6707
CRC-32
cae63faf
File type
Windows executable
First seen
2015-08-23

Runtime Analysis

Registry Keys Created
  • HKCR\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}\ProxyStubClsid32
    (Default)
    {00020420-0000-0000-C000-000000000046}
  • HKCR\CLSID\{017E057B-DACF-4A07-B878-E294565E3F90}
    (Default)
    Setup.Application
  • HKCR\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}\1.0
    (Default)
    Setup
  • HKCR\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}\TypeLib
    Version
    1.0
  • HKCR\CLSID\{017E057B-DACF-4A07-B878-E294565E3F90}\ProgID
    (Default)
    Setup.Application
  • HKCR\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}\1.0\HELPDIR
    (Default)
  • HKCR\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}\1.0\0\win32
    (Default)
    c:\test_item.exe
  • HKCR\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}\ProxyStubClsid
    (Default)
    {00020420-0000-0000-C000-000000000046}
  • HKCU\Software\Appscion
    AppInstanceUid
    1669FE9F-E84D-4F98-B7C7-80006D86F106
  • HKCR\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}\1.0\FLAGS
    (Default)
  • HKCR\Setup.Application
    (Default)
    Setup.Application
  • HKCR\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
    (Default)
    ISetup
  • HKCR\Setup.Application\CLSID
    (Default)
    {017E057B-DACF-4A07-B878-E294565E3F90}
  • HKCR\CLSID\{017E057B-DACF-4A07-B878-E294565E3F90}\InprocHandler32
    (Default)
    ole32.dll
  • HKCR\CLSID\{017E057B-DACF-4A07-B878-E294565E3F90}\LocalServer32
    (Default)
    "c:\test_item.exe"
  • HKCU\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION
    test_item.exe
    0x00001a0a
HTTP Requests
  • http://s.appfuss.com/setup
DNS Requests
  • s.appfuss.com

Example 2

File Information

Size
659K
SHA-1
0025ed0be86f6d4b8cb4f2f7dbc7c03479790c0a
MD5
520f8313c6b5886a02c899ea21d4bd2e
CRC-32
168189a2
File type
Windows executable
First seen
2015-08-23

Runtime Analysis

Registry Keys Created
  • HKCR\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}\1.0
    (Default)
    Setup
  • HKCR\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}\TypeLib
    Version
    1.0
  • HKCR\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}\1.0\HELPDIR
    (Default)
  • HKCR\Setup.Application\CLSID
    (Default)
    {017E057B-DACF-4A07-B878-E294565E3F90}
  • HKCR\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}\ProxyStubClsid
    (Default)
    {00020420-0000-0000-C000-000000000046}
  • HKCR\CLSID\{017E057B-DACF-4A07-B878-E294565E3F90}
    (Default)
    Setup.Application
  • HKCR\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
    (Default)
    ISetup
  • HKCR\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}\1.0\FLAGS
    (Default)
  • HKCR\CLSID\{017E057B-DACF-4A07-B878-E294565E3F90}\LocalServer32
    (Default)
    "c:\test_item.exe"
  • HKCR\Setup.Application
    (Default)
    Setup.Application
  • HKCU\Software\Appscion
    AppInstanceUid
    05307980-4EBF-4C2D-924C-BA0724759F38
  • HKCR\CLSID\{017E057B-DACF-4A07-B878-E294565E3F90}\InprocHandler32
    (Default)
    ole32.dll
  • HKCR\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}\ProxyStubClsid32
    (Default)
    {00020420-0000-0000-C000-000000000046}
  • HKCR\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}\1.0\0\win32
    (Default)
    c:\test_item.exe
  • HKCU\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION
    test_item.exe
    0x00001a0a
  • HKCR\CLSID\{017E057B-DACF-4A07-B878-E294565E3F90}\ProgID
    (Default)
    Setup.Application
HTTP Requests
  • http://s.appfuss.com/setup
DNS Requests
  • s.appfuss.com

Example 3

File Information

Size
659K
SHA-1
0039eedb411bc412cb694477ecf06006a9f1d2a9
MD5
08e76bc34fede77d14aa639f201e6adf
CRC-32
4cae55cd
File type
Windows executable
First seen
2015-08-23

Runtime Analysis

Registry Keys Created
  • HKCU\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION
    test_item.exe
    0x00001a0a
  • HKCR\Setup.Application\CLSID
    (Default)
    {017E057B-DACF-4A07-B878-E294565E3F90}
  • HKCR\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}\1.0\HELPDIR
    (Default)
  • HKCR\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}\ProxyStubClsid
    (Default)
    {00020420-0000-0000-C000-000000000046}
  • HKCU\Software\Appscion
    AppInstanceUid
    4AF922E0-7721-4A40-8F63-910A00950671
  • HKCR\CLSID\{017E057B-DACF-4A07-B878-E294565E3F90}
    (Default)
    Setup.Application
  • HKCR\CLSID\{017E057B-DACF-4A07-B878-E294565E3F90}\ProgID
    (Default)
    Setup.Application
  • HKCR\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}\ProxyStubClsid32
    (Default)
    {00020420-0000-0000-C000-000000000046}
  • HKCR\CLSID\{017E057B-DACF-4A07-B878-E294565E3F90}\InprocHandler32
    (Default)
    ole32.dll
  • HKCR\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}\1.0
    (Default)
    Setup
  • HKCR\CLSID\{017E057B-DACF-4A07-B878-E294565E3F90}\LocalServer32
    (Default)
    "c:\test_item.exe"
  • HKCR\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}\TypeLib
    Version
    1.0
  • HKCR\Setup.Application
    (Default)
    Setup.Application
  • HKCR\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}\1.0\FLAGS
    (Default)
  • HKCR\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
    (Default)
    ISetup
  • HKCR\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}\1.0\0\win32
    (Default)
    c:\test_item.exe
HTTP Requests
  • http://s.appfuss.com/setup
DNS Requests
  • s.appfuss.com

download Essayez les produits Sophos gratuitement
Téléchargez maintenant