Virus: TR/Pakes.A.674 Date discovered: 01/08/2006 Type: Trojan In the wild: No Reported Infections: Low Distribution Potential: Low Damage Potential: Low to medium Static file: Yes File size: 541.696 Bytes MD5 checksum: a45e099ba5b9c06e6d55ea0676538795 VDF version: 6.35.01.29 - Tuesday, August 1, 2006IVDF version: 6.35.01.29 - Tuesday, August 1, 2006
General Aliases: Platforms / OS: Side effects: Files %TEMPDIR% \zhengtu.exe Furthermore it gets executed after it was fully created. Further investigation pointed out that this file is malware, too. Detected as: TR/NSAnti.B.3 %TEMPDIR% \menghuan.exe Further investigation pointed out that this file is malware, too. Detected as: TR/NSAnti.B.10 %TEMPDIR% \jianghu.exe Furthermore it gets executed after it was fully created. Further investigation pointed out that this file is malware, too. Detected as: TR/NSAnti.B.5 %TEMPDIR% \hw.exe Furthermore it gets executed after it was fully created. Further investigation pointed out that this file is malware, too. Detected as: TR/NSAnti.B.9 %TEMPDIR% \QQmz.exe Furthermore it gets executed after it was fully created. Further investigation pointed out that this file is malware, too. Detected as: TR/NSAnti.B.7 %TEMPDIR% \gezi.exe Furthermore it gets executed after it was fully created. Further investigation pointed out that this file is malware, too. Detected as: TR/Crypt.NSAnti.Gen %TEMPDIR% \QQhx.exe Furthermore it gets executed after it was fully created. Further investigation pointed out that this file is malware, too. Detected as: TR/NSAnti.B.4 File details Programming language: The malware program was written in Delphi.
Description inserted by Bogdan Iliuta on Monday, August 7, 2006
Back
.
.
.
.
