Virus:ADSPY/Hoba.A
Date discovered:24/11/2009
Type:Security Privacy Risk
In the wild:Yes
Reported Infections:Low
Distribution Potential:Low
Damage Potential:Low
Static file:Yes
File size:327.960 Bytes
MD5 checksum:c58088d4c0cea2c191fed21b1ca2383c
IVDF version:7.10.01.73 - Tuesday, November 24, 2009

 General Platforms / OS:
   • Windows 2000
   • Windows XP
   • Windows 2003


Side effects:
   • Downloads malicious files

 Files It tries to download some files:

– The location is the following:
   • http://static.zangocash.com/Setup/Update/**********


– The location is the following:
   • http://te1.zango.com/**********?ver=v64


– The locations are the following:
   • http://public.pinballpublishernetwork.com/php/**********?SAIRND=1504031
   • http://public.pinballpublishernetwork.com/php/**********?SAIRND=1484546
   • http://public.pinballpublishernetwork.com/php/**********?SAIRND=1464656

 File details Runtime packer:
In order to aggravate detection and reduce size of the file it is packed with the following runtime packer:
   • UPX

Description inserted by Petre Galan on Monday, March 1, 2010
Description updated by Andrei Ivanes on Tuesday, March 2, 2010

Back . . . .