PUA_CLOUDGUARD.COMPONENT
March 07, 2016
ALIASES:
Gen:Variant.Adware.Zusy (F-Secure)
PLATFORM:
Windows
OVERALL RISK RATING:
DAMAGE POTENTIAL:
DISTRIBUTION POTENTIAL:
REPORTED INFECTION:
INFORMATION EXPOSURE:
Threat Type: Potentially Unwanted Application
Destructiveness: No
Encrypted:
In the wild: Yes
OVERVIEW
This potentially unwanted application arrives as a component bundled with malware/grayware packages. It may be manually installed by a user.
It requires its main component to successfully perform its intended routine.
TECHNICAL DETAILS
File Size:
1,731,072 bytes
File Type:
DLL
Initial Samples Received Date:
04 Mar 2016
Arrival Details
This potentially unwanted application arrives as a component bundled with malware/grayware packages.
It may be manually installed by a user.
Other Details
This potentially unwanted application connects to the following possibly malicious URL:
- {BLOCKED}.{BLOCKED}.99.180:80
- www.{BLOCKED}tor.com
- http://{BLOCKED}ller.info/u/?q={random}&c={random}&r={random}
- http://{BLOCKED}ol.net/u/?q={random}&c={random}&r={random}
- http://{BLOCKED}h.info/u/?q={random}&c={random}&r={random}
It requires its main component to successfully perform its intended routine.