12.07.2012, 09:32
Malware info:
SHA256: ac3157d9577b8162f12e6a79cbbbdc1f204866b638f34cd8d24db14f121eb1a0
SHA1: c58834f8ed13fd84bedbaccfbc5a6958df80b4c9
MD5: 8a0599a26d320afba474e9ef427711e3
File size: 69120 bytes
VT info (18/42):
Changes in the system:
SHA256: ac3157d9577b8162f12e6a79cbbbdc1f204866b638f34cd8d24db14f121eb1a0
SHA1: c58834f8ed13fd84bedbaccfbc5a6958df80b4c9
MD5: 8a0599a26d320afba474e9ef427711e3
File size: 69120 bytes
VT info (18/42):
[Aby zobaczyć linki, zarejestruj się tutaj]
Changes in the system:
- Registry Key:
HKLM\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\run\bs_stealth: "%AppData%\bs_stealth.exe"
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\run\bs_stealth: "%AppData%\bs_stealth.exe"
Files:
%AppData%\bs_log.dat
%AppData%\bs_stealth.exe
Treść widoczna jedynie dla zarejestrowanych użytkowników