| Packed MD5 | 962e6b9fcff1ab0e6a7de7057d02bd08 |
| Priority | 0 |
| First | 06/28/2008 |
| Last | 06/29/2008 |
| Count | 2 |
| History | 2 hits: 06-28 to 06-29 |
| Unpacked MD5 | |
| AV Hits | 20 |
| AV Count | 32 |
| CC Servers | 69.247.147.113:13001 |
| DNS Lookups | US:chat-shqip.org US:w3bs.chat-shqip.org |
| Failed Connects | US:69.247.147.113:12351 US:69.247.147.113:13001 |
| AV Name | AhnLab-V3:MISSED, AntiVir:TRSpy.Games.A, Authentium:MISSED, Avast:_Virut, AVG:Virut, BitDefender:Virtob.3.Gen, CAT-QuickHeal:Virut.Cur2, ClamAV:Virut.Gen.C-50, DrWeb:Virut.5, eSafe:MISSED, eTrust-Vet:MISSED, Ewido:MISSED, FileAdvisor:MISSED, Fortinet:Virut.fam, F-Prot:MISSED, F-Secure:Virut.T, Ikarus:Virut.n, Kaspersky:MISSED, McAfee:MISSED, Microsoft:Virut.AP, NOD32v2:MISSED, Norman:Virut.T, Panda:MISSED, Prevx1:MISSED, Rising:Virut.GEN, Sophos:MISSED, Sunbelt:MISSED, Symantec:MISSED, TheHacker:Virut.gen2, VBA32:MISSED, VirusBuster:Virut.Gen.5, Webwasher-Gateway:Spy.Games.A |
| WinXP Files | iexplorer.exe |
| WinXP Processes | CMD.EXE, CSRSS.EXE, EXPLORER.EXE, iexplorer.exe, LSASS.EXE, MSMSGS.EXE, SERVICES.EXE, SPOOLSV.EXE, SVCHOST.EXE, WINLOGON.EXE |
| WinXP Registries | HKEY_LOCAL_MACHINE@...CurrentVersion\RunServices, HKEY_USERS@...CurrentVersion\RunOnce, HKEY_LOCAL_MACHINE@...CurrentVersion\\RunServices, HKEY_USERS@...CurrentVersion\\RunOnce |
| WinXP Ports | 1034, 12045, 12045, 1236, 14118, 1613, 1643, 1845, 2485, 2636, 3215, 3234, 3244, 4362, 4376, 445, 4533, 4591, 4592, 4592, 4603, 4603, 4666, 4667, 4668, 4669, 4670, 4671, 4672, 4673, 4674, 4675, 4676, 4677, 4678, 4679, 4680, 4681, 4682, 4683, 4684, 4685, 4686, 4687, 4688, 4689, 4690, 4691, 4692, 4693, 4694, 4695, 4696, 4697, 4698, 4699, 4700, 4702, 4703, 4704, 4705, 4706, 4707, 4708, 4709, 4710, 4711, 4712, 4713, 4714, 4715, 4716, 4717, 4718, 4719, 4720, 4721, 4722, 4723, 4724, 4725, 4726, 4727, 4728, 4729, 4730, 4731, 4732, 4733, 4734, 4735, 4736, 4737, 4738, 4739, 4740, 4741, 4742, 4743, 4744, 4745, 4746, 4747, 4748, 4749, 4750, 4751, 4752, 4753, 4754, 4755, 4756, 4757, 4758, 4759, 4760, 4761, 4762, 4763, 1036, 1120, 1163, 1350, 1385, 1526, 1546, 1638, 1654, 1847, 1875, 19389, 2092, 2270, 2289, 2474, 2562, 3015, 3102, 3330, 3411, 3420, 3650, 3728, 3734, 3787, 3800, 3860, 3865, 4041, 4164, 4563, 4566, 4855, 4856, 4857, 4858, 4859, 4860, 4861, 4862, 4863, 4864, 4865, 4866, 4867, 4868, 4869, 4870, 4871, 4872, 4873, 4874, 4875, 4876, 4877, 4878, 4879, 4880, 4881, 4882, 4883, 4884, 4885, 4886, 4887, 4888, 4889, 4890, 4891, 4892, 4893, 4894, 4895, 4896, 4897, 4898, 4899, 4900, 4901, 4902, 4903, 4904, 4905, 4906, 4907, 4908, 4909, 4910, 4911, 4912, 4913, 4914, 4915, 4916, 4917, 4918, 4919, 4920, 4921, 4922, 4923, 4924, 4925, 4926, 4928, 4929, 4930, 4931, 4932, 4938 |
| Win-2Kf Files | |
| Win-2Kf Processes | |
| Win-2Kf Registries | |
| Win-2Kf Ports | |
| Create Events | |
| Create Files | |
| Create RegKeys | |
| Open RegKeys | |
| Service Starts | |
| Service Deletes | |
| Service Creates | |
| Cluster | |
| Cluster Confidence | |
| Packer ID1 | none |
| Packer ID2 | none |
| Embedded DNS | |
| String Count | |
| String Link | text |
| String MD5 | |
| Timerange | 365 Days |
| Unpack Status | unknown () |
| Countries | 1 |
| Unpacked Link | none[none] |
| Callgraph | none:none |
| API Resolution | |
| Comment | none |