| Packed MD5 | 9f5b49bb4122294d4b67d9fc072dadae |
| Priority | 0 |
| First | 09/10/2009 |
| Last | 11/03/2009 |
| Count | |
| History | |
| Unpacked MD5 | e7124c9b6165a3ec0953a89362cec8ac |
| AV Hits | 38 |
| AV Count | 32 |
| CC Servers | 66.252.13.212:16667 |
| DNS Lookups | US:bbs.moiservice.com |
| Failed Connects | US:66.252.13.212:16667 |
| AV Name | AhnLab-V3:Win-Agent.147456.EB, AntiVir:DRDelphi.Gen, Authentium:Backdoor2.DKQM, Avast:_Agent-AEVB, AVG:Generic.PVI, BitDefender:Generic.127971, CAT-QuickHeal:Agent.ucr, ClamAV:Agent-65126, DrWeb:HLLW.MyBot, eSafe:DRDelphi, eTrust-Vet:DfInject.CE, Ewido:MISSED, FileAdvisor:MISSED, Fortinet:Agent.UCR!tr.bdr, F-Prot:Backdoor2.DKQM, F-Secure:Agent.ucr, Ikarus:VirTool.DelfInject, Kaspersky:Agent.ucr, McAfee:MISSED, Microsoft:VirTool_Injector.gen!D, NOD32v2:MISSED, Norman:Agent.JYOZ, Panda:TrjDownloader.MDW, Prevx1:MISSED, Rising:Mnless.akf, Sophos:MISSED, Sunbelt:Agent.ucr, Symantec:Trojan, TheHacker:BackdoorAgent.ucr, VBA32:AntiAV.rq, VirusBuster:Agent.JLLT, Webwasher-Gateway:MISSED |
| WinXP Files | o, Tracker.exe |
| WinXP Processes | CMD.EXE, CSRSS.EXE, EXPLORER.EXE, jdmnqab.exe, LSASS.EXE, MSMSGS.EXE, SERVICES.EXE, SPOOLSV.EXE, SVCHOST.EXE, WINLOGON.EXE, dqgtfri.exe |
| WinXP Registries | HKEY_LOCAL_MACHINE@...CurrentVersion\\RunServices |
| WinXP Ports | 1034, 1627, 1628, 1650, 1651, 2037, 2038, 2097, 2098, 2797, 2798, 2799, 2800, 2801, 2802, 2803, 2804, 2805, 2806, 2807, 2808, 2809, 2810, 2811, 2812, 2813, 2814, 2815, 2816, 2817, 2818, 2819, 2820, 2821, 2822, 2823, 2824, 2825, 2826, 2827, 2828, 2829, 2830, 2831, 2832, 2833, 2834, 2835, 2836, 2837, 2838, 2839, 2840, 2841, 2842, 2843, 2844, 2845, 2846, 2847, 2848, 2849, 2850, 2851, 2852, 2853, 2854, 2855, 2856, 2857, 2858, 2859, 2860, 2861, 2862, 2863, 2864, 2865, 44479, 69, 16383, 2000, 2001, 2002, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2019, 2020, 2021, 2022, 2023, 2024, 2025, 2026, 2027, 2028, 2029, 2030, 2031, 2032, 2033, 2034, 2035, 2036, 2039, 2040, 2041, 2042, 2043, 2044, 2045, 2046, 2047, 2048, 2049, 2050, 2051, 2052, 2053, 2054, 2055, 2056, 2057, 2058, 2059, 2060, 2061, 2062, 2063, 2064, 2065, 2066, 2067, 2068, 2069, 2070, 2071, 2072, 2073, 2074, 2075, 2076, 2077, 2078, 2079, 2080, 2081, 2082, 2083, 2084, 2085, 2086, 2087, 2088, 2089, 2090, 2091, 2092, 2093, 2094, 2095, 2096, 2099, 2100, 2101, 2102, 2103, 2104, 2105, 2106, 2107, 2108, 2109, 2110, 2111, 2112, 2113, 2114, 2115, 2116, 2117, 2118, 2119, 2120, 2121, 2122, 3198 |
| Win-2Kf Files | |
| Win-2Kf Processes | |
| Win-2Kf Registries | |
| Win-2Kf Ports | |
| Create Events | |
| Create Files | |
| Create RegKeys | |
| Open RegKeys | |
| Service Starts | |
| Service Deletes | |
| Service Creates | |
| Cluster | |
| Cluster Confidence | |
| Packer ID1 | Stranik |
| Packer ID2 | |
| Embedded DNS | |
| String Count | |
| String Link | text |
| String MD5 | |
| Timerange | 365 Days |
| Unpack Status | unknown ( : 0 : Unpacking Provided Binary. (Code,Data) = (, )) |
| Countries | 3 |
| Unpacked Link | |
| Callgraph | |
| API Resolution | |
| Comment | none |