23.07.2012, 06:59
Malware info:
SHA256: 4055f66b00029901a2c4d135c126185bbabf7393e06e24b4fbc183cfce4406ec
SHA1: 2c34c4c3ee37493af7e130023c69dbc6829b0cff
MD5: 3fa712fa1f5fd57eeceaadfe61e4caa9
File size: 708096 bytes
VT info (29/42):
Changes in the system:
SHA256: 4055f66b00029901a2c4d135c126185bbabf7393e06e24b4fbc183cfce4406ec
SHA1: 2c34c4c3ee37493af7e130023c69dbc6829b0cff
MD5: 3fa712fa1f5fd57eeceaadfe61e4caa9
File size: 708096 bytes
VT info (29/42):
[Aby zobaczyć linki, zarejestruj się tutaj]
Changes in the system:
- Registry Key:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\wmpnetk: "C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\wmpnet32.exe"
Files:
C:\Documents and Settings\Administrator\Local Settings\Temp\fp.txt
C:\Documents and Settings\Administrator\Local Settings\Temp\svchost.exe
C:\Documents and Settings\Administrator\Local Settings\Temp\wmpnet32.exe
Treść widoczna jedynie dla zarejestrowanych użytkowników