OxyPumper

カテゴリ: アドウェアと不要なアプリケーション(PUA)保護提供の開始日時:2014 9 19 03:01:19 (GMT)
種類: Unspecified PUA最終更新日時:2019 9 26 03:44:40 (GMT)

Download Sophos Virus Removal Tool (無償) のダウンロード - 他社製ウイルス対策製品が検出できなかったマルウェアを検出

Examples of OxyPumper include:

Example 1

File Information

Size
454K
SHA-1
0c48bc63459ab0c45a21abc86354e3858a592980
MD5
97747a1c63b74b84c4b56f8f50dbe52b
CRC-32
a2568428
File type
Windows executable
First seen
2014-07-25

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\sample_000808.log
Registry Keys Created
  • HKCU\Software\Downloaders\Download Manager
    GUID
    □□a□□7□□□□□□)#□{
HTTP Requests
  • http://uppy.info/api/upurl/
  • http://www.sympation.com/api/startdropper/fbed61ae1f3711e587fb000c2923137b/2000001/1.0.0.22
  • http://www.sympation.com/getdistr/o/blank_distrib2
DNS Requests
  • uppy.info
  • www.sympation.com

Example 2

File Information

Size
13K
SHA-1
0f4383bf8e43368b4cc5e05dcdf4bd4bfd1c52be
MD5
00eaff78076dc5fe8c60ef4a15f35ba7
CRC-32
9f3aa20e
File type
Windows executable
First seen
2014-08-02

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\Updater_20150710.log

Example 3

File Information

Size
227K
SHA-1
1531730f7147d76cf05f78357802d588d3da8bd5
MD5
a795d917898244a8f901da9807fc687f
CRC-32
12740093
File type
Windows executable
First seen
2014-08-29

Runtime Analysis

Dropped Files
  • c:\Documents and Settings\test user\Local Settings\Temp\sample_001936.log
Registry Keys Created
  • HKCU\Software\Downloaders\Download Manager
    GUID
    k"□□7□□□□□□□)□□
HTTP Requests
  • http://installdream.com/download/altBlankNet2.dat
  • http://www.supplicise.com/api/dmdistrerror/6b22d2aa37af11e487f8000c297fd2f7/631977101/2.0.0.143
  • http://www.supplicise.com/api/startuploader/6b22d2aa37af11e487f8000c297fd2f7/631977101/2.0.0.143
  • http://www.test-landing.com/api/wwwurl/1
DNS Requests
  • installdream.com
  • www.supplicise.com
  • www.test-landing.com

download 無償評価版の試用
無償評価版のダウンロード