10.04.2012, 12:15
Malware info:
SHA256: 79d34bc92c1ccd50c2ace1b8d0affe89f1e3708f29417e71d554c784036e470d
SHA1: df9891c4e962cad9389fe9cdf9681a8003bbc953
MD5: 8e22616de48a5736cc1929d5e101010e
File size: 941.5 KB ( 964096 bytes )
VT info:
Changes in the system:
Dodano: 10 Apr 2012, 15:15
Malware info:
SHA256: 7a6e47d8e9514cb796195e2ddbb21617c81fa00c84d9f416da7ac7629ad7c866
SHA1: 35793de74556225af62a1f5cb7789caf081082eb
MD5: 118a502afc682d14cfd8e3908fe14506
File size: 41.2 KB ( 42160 bytes )
VT info:
SHA256: 79d34bc92c1ccd50c2ace1b8d0affe89f1e3708f29417e71d554c784036e470d
SHA1: df9891c4e962cad9389fe9cdf9681a8003bbc953
MD5: 8e22616de48a5736cc1929d5e101010e
File size: 941.5 KB ( 964096 bytes )
VT info:
[Aby zobaczyć linki, zarejestruj się tutaj]
Changes in the system:
- Registry key:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\FacbookUpdate: "%Appdata%\FacbookUpdate.exe"
Files:
%Appdata%\FacbookUpdate.exe
%Temp%\plugtemp\Service.exe
C:\autorun.inf
C:\Rundll32.exe
Dodano: 10 Apr 2012, 15:15
Malware info:
SHA256: 7a6e47d8e9514cb796195e2ddbb21617c81fa00c84d9f416da7ac7629ad7c866
SHA1: 35793de74556225af62a1f5cb7789caf081082eb
MD5: 118a502afc682d14cfd8e3908fe14506
File size: 41.2 KB ( 42160 bytes )
VT info:
[Aby zobaczyć linki, zarejestruj się tutaj]
Changes in the system:- Registry key:
HKLM\Software\Classes\CLSID\{40E3A34A-3282-41F8-AD2C-051BAB96AD4A}\InprocServer32\: "%SysDir%\Usign.dll"
HKLM\Software\Classes\TypeLib\{174F982F-BD7E-4CCE-ABB8-4D5C66C66E2E}\1.0\0\win32\: "%SysDir%\Usign.dll"
Files:
%SysDir%\drivers\Usign.sys
%SysDir%\Usign.dll