Home > malware > Malware Report: 68fd610eaa516b9d2c43b151422013f92233a0a9

Malware Report: 68fd610eaa516b9d2c43b151422013f92233a0a9

November 11th, 2009 xandora Leave a comment Go to comments

File SHA1: 68fd610eaa516b9d2c43b151422013f92233a0a9
File MD5 : aba81fdd1e459a4e807c27da771d109e
File Type: PE32 executable for MS Windows (GUI) Intel 80386 32-bit
Date: Wed Nov 11 01:08:05 MYT 2009
Possible Malware: YES

#– Files Created: –

/Documents and Settings/Administrator/Local Settings/Temp/~DF8A7C.tmp
/Documents and Settings/Administrator/Local Settings/Temporary Internet Files/Content.IE5/WDANS5QR/apache_pb2[1].gif
/Documents and Settings/Administrator/Local Settings/Temporary Internet Files/Content.IE5/WDANS5QR/powered_by_rh[1].png

#– Registry Created: –

[SOFTWARE]
[SYSTEM]
[SECURITIES]
[DEFAULT]
[NTUSER]

#– Malware Traffic – DNS: –

searchfuckgo.info

#– Malware Traffic – Connections: –

84.16.231.58.80

#– Malware Traffic – www: –

searchfuckgo.info/?program=subid024
searchfuckgo.info/icons/apache_pb2.gif
searchfuckgo.info/icons/powered_by_rh.png

#– Screenshots: –

Screen After 90 Seconds

Screen After 120 Seconds

Categories: malware Tags:
  1. No comments yet.
  1. No trackbacks yet.