Search
Keyword: irc generic
wellsoffice.wellsfargo.com It sends the information it gathers to remote sites. Other Details Based on analysis of the codes, it has the following capabilities: Connects to a certain IRC server using a certain port and joins
Routine This worm joins any of the following IRC channel(s): #rxbot_paradise It executes the following command(s) from a remote malicious user: Create and delete files Download file from the Internet
\command=OGa\RD\GOx.exe shell\open\default=1 Backdoor Routine This worm connects to any of the following IRC server(s): sik.{BLOCKED}nix.net idem0.{BLOCKED}k.eu ogardf.{BLOCKED}ils.net ogardf.{BLOCKED}rk.biz
following IRC server(s): http://imgay.{BLOCKED}s.cat http://imgay.{BLOCKED}s.es http://imgay.{BLOCKED}at.net It executes the following commands from a remote malicious user: Download files Upload files Copy
}agemdesite.com/tribunal.exe This report is generated via an automated analysis system. TrojanDownloader:Win32/Small.AFX (Microsoft); Generic Downloader.ea (McAfee); Downloader (Symantec); Trojan-Downloader.Win32.Delf.qz
{BLOCKED}h.comupd.php This report is generated via an automated analysis system. Adware:Win32/Gabpath (Microsoft); Generic PUP.x!uc. (McAfee); Trojan.Adclicker (Symantec); Gabpath (Sunbelt);
}nc.net/{random path} This report is generated via an automated analysis system. TrojanDownloader:Win32/Ponmocup.A (Microsoft); Generic Downloader.x!fwl (McAfee); Trojan.Milicenso (Symantec);
}lando.com.br/chat/hlpchlh.exe http://www.{BLOCKED}lando.com.br/chat/xhlhosadf.exe This report is generated via an automated analysis system. Generic Downloader.s (McAfee); Downloader (Symantec);
report is generated via an automated analysis system. Rogue:Win32/FakeVimes (Microsoft); Generic FakeAlert.jn (McAfee); Trojan.Gen (Symantec); PAK:UPX (Kaspersky); VirTool.Win32.Obfuscator.hg!b (v)
{BLOCKED}dario.com/winsetup.jpg This report is generated via an automated analysis system. TrojanDownloader:Win32/Banload (Microsoft); Generic Downloader.be (McAfee); Downloader (Symantec);
\Software\DC3_FEXEC This report is generated via an automated analysis system. Backdoor:Win32/Fynloski.A (Microsoft); Generic BackDoor!1pj (McAfee); Downloader (Symantec); PAK:MPRESS,
}0.org/d.txt This report is generated via an automated analysis system. Generic Downloader.s (McAfee); Trojan Horse (Symantec); Trojan-Downloader.Win32.VB.luh, Trojan-Downloader.Win32.VB.luh (Kaspersky);
}ays.com/documentos/new.gif This report is generated via an automated analysis system. TrojanDownloader:Win32/VB.YDA (Microsoft); Generic Downloader.x!fyp (McAfee); Downloader (Symantec); Trojan.Win32.Generic!BT (Sunbelt);
report is generated via an automated analysis system. Rogue:Win32/FakeVimes, Rogue:Win32/FakeVimes (Microsoft); Generic FakeAlert.kr (McAfee); SmartAVFraud!gen2 (Symantec); Trojan.Win32.FakeAV.mkve
report is generated via an automated analysis system. Worm:Win32/Gamarue.F (Microsoft); Generic BackDoor.wz (McAfee); Packed.Generic.357 (Symantec); Trojan.Win32.Yakes.odx (Kaspersky);
{BLOCKED}p.com.br/imgma.jpg This report is generated via an automated analysis system. TrojanDownloader:Win32/Small.gen!AO (Microsoft); Generic Downloader.ab (McAfee); Downloader (Symantec); PAK:Petite,
ABAD94AF94BE8BC993.ini This report is generated via an automated analysis system. TrojanDownloader:Win32/Banload.AJU (Microsoft); Generic Downloader.x!g2n (McAfee); Downloader (Symantec); PAK:UPX,
\SYSTEM\CurrentControlSet\ Control\MediaResources\msvideo This report is generated via an automated analysis system. Generic BackDoor!1ls (McAfee); Backdoor.Trojan (Symantec); Backdoor.Win32.Agent.awye
\Software\DC3_FEXEC This report is generated via an automated analysis system. Backdoor:Win32/Fynloski.A (Microsoft); Generic BackDoor.yl (McAfee); Downloader (Symantec); PAK:MPRESS, Backdoor.Win32.Finlosky.b
report is generated via an automated analysis system. VirTool:Win32/CeeInject.gen!HB (Microsoft); Generic BackDoor.yq (McAfee); Trojan.Gen (Symantec); Trojan.Win32.Jorik.Slenfbot.atv (Kaspersky);