| Packed MD5 | 1a2c0e6130850f8fd9b9b5309413cd00 |
| Priority | 4 |
| First | 01/07/2012 |
| Last | 02/18/2012 |
| Count | |
| History | |
| Unpacked MD5 | |
| AV Hits | 29 |
| AV Count | 32 |
| CC Servers | |
| DNS Lookups | |
| Failed Connects | |
| AV Name | AhnLab-V3:Sasser.15872.B, AntiVir:Sasser.A.14, Authentium:Sasser.B, Avast:_Sasser-B, AVG:I-Sasser.B, BitDefender:Sasser.B, CAT-QuickHeal:Sasser.B, ClamAV:Sasser.B, DrWeb:HLLW.Jobaka, eSafe:Sasser.a, eTrust-Vet:Sasser.B, Ewido:Sasser.a, FileAdvisor:MISSED, Fortinet:Sasser.B, F-Prot:Sasser.B, F-Secure:MISSED, Ikarus:Email-Plexus, Kaspersky:Sasser.a, McAfee:Sasser.b, Microsoft:Sasser.dam, NOD32v2:Sasser.B, Norman:Sasser.B, Panda:Sasser.B.worm, Prevx1:MISSED, Rising:MISSED, Sophos:Sasser-B, Sunbelt:Sasser.d, Symantec:Sasser.B.Worm, TheHacker:Malware.corr.gen, VBA32:Sasser.b, VirusBuster:I-Sasser.B, Webwasher-Gateway:Sasser.A.14 |
| WinXP Files | 17205_up.exe, 2924_up.exe, avserve2.exe, 9713_up.exe |
| WinXP Processes | 2924_up.exe, CMD.EXE, CSRSS.EXE, dwwin.exe, EXPLORER.EXE, LSASS.EXE, MSMSGS.EXE, SERVICES.EXE, SPOOLSV.EXE, SVCHOST.EXE, WINLOGON.EXE, 9713_up.exe |
| WinXP Registries | |
| WinXP Ports | 1095, 1102, 1103, 1157, 1162, 1163, 1175, 1193, 1208, 1213, 1214, 1226, 1434, 1489, 1490, 1491, 1497, 1595, 1600, 1601, 1603, 1618, 1742, 1742, 1820, 1862, 1875, 1876, 1959, 1982, 1985, 2079, 2096, 2097, 2177, 2198, 2199, 2206, 2273, 2283, 2296, 2519, 2536, 2539, 2543, 2572, 2587, 2589, 2629, 2643, 2644, 2681, 2692, 2785, 2788, 2926, 2935, 3110, 3121, 3165, 3188, 3239, 3249, 3274, 3282, 3362, 3368, 3463, 3469, 3471, 3508, 3525, 3642, 3658, 3663, 3670, 3707, 4118, 4132, 4133, 4155, 4183, 4295, 4360, 4369, 4370, 4379, 4388, 4403, 4411, 4412, 445, 4482, 4498, 4569, 4583, 4681, 4699, 5554, 5554, 5554, 5554, 5554, 5554, 5554, 5554, 5554, 5554, 5554, 5554, 5554, 5554, 9995, 9996, 1216, 1227, 1234, 1243, 1246, 1254, 1286, 1304, 1415, 1425, 1877, 1890, 1891, 1893, 1995, 2007, 2061, 2074, 2166, 2306, 2315, 2370, 2382, 2390, 2402, 2540, 2549, 2550, 2551, 2633, 2641, 2689, 2700, 2772, 2776, 3115, 3124, 3127, 3147, 3729, 3734, 3753, 3758, 3845, 3862, 3907, 3909, 4170, 4177, 4304, 4320, 4391, 4402, 4414, 4489, 4503, 4542, 4553, 4555, 4561, 4727, 4740, 4768, 4776, 4890, 4900 |
| Win-2Kf Files | |
| Win-2Kf Processes | |
| Win-2Kf Registries | |
| Win-2Kf Ports | |
| Create Events | |
| Create Files | |
| Create RegKeys | |
| Open RegKeys | |
| Service Starts | |
| Service Deletes | |
| Service Creates | |
| Cluster | |
| Cluster Confidence | |
| Packer ID1 | none |
| Packer ID2 | none |
| Embedded DNS | |
| String Count | 60 |
| String Link | text |
| String MD5 | 5961478c0e29e92aea0e29effe92b140 |
| Timerange | 365 Days |
| Unpack Status | unknown (unpacked : 0 : Unpacking Provided Binary. (Code,Data) = (73.37%, 20.43%)) |
| Countries | 6 |
| Unpacked Link | |
| Callgraph | |
| API Resolution | |
| Comment | none |