Xandora » Malware Report: dbaabdabb5ec350614eecbda60eda79a2a8ad989

Home > malware > Malware Report: dbaabdabb5ec350614eecbda60eda79a2a8ad989

Malware Report: dbaabdabb5ec350614eecbda60eda79a2a8ad989

November 6th, 2009 xandora Leave a comment Go to comments

File SHA1: dbaabdabb5ec350614eecbda60eda79a2a8ad989
File MD5 : 1ba92cbe2d8244629c3321fdfa3d0b38
File Type: MS-DOS executable PE for MS Windows (GUI) Intel 80386 32-bit
Date: Fri Nov 6 23:24:11 MYT 2009

#– Files Created: –

/AutoRun.inf
/AutoRun.vbs
/Documents and Settings/Administrator/Local Settings/Temp/107109.tmp
/WINDOWS/system32/bcja.dll
/WINDOWS/system32/gfgg.dll
/WINDOWS/system32/system.exe
/system.exe

#– Registry Created: –

[SOFTWARE]
[SYSTEM]
+ [system\ControlSet002\Services\Driver]
+ [system\ControlSet002\Services\Driver\Security]
[SECURITIES]
[DEFAULT]
[NTUSER]

#– Malware Traffic – DNS: –

x.371777.com

#– Malware Traffic – Connections: –

61.147.119.210.80

#– Malware Traffic – www: –

x.371777.com

#– Screenshots: –

Screen After 90 Seconds

Categories: malware Tags:

Comments (0) Trackbacks (0) Leave a comment Trackback

No comments yet.

No trackbacks yet.

Malware Report: 78ef9c455566b2ecd920fdac5b0782775dc4367f Malware Report: 9b5429a2515da7248f6391b5ff5d8168322beacc