Trojan analysis from the recent wave of fakes
#1
So I took a little time off to analyze what's behind those fake files when they suddenly popup by one account with hundreds of fake peers.

The sample is from a fake Windows 7 Loader

Side notes:
The download included a .txt file and .nfo file, both also contained some malicious code...

Here's the heuristic report:
http://pastebin.com/rZHFQ0mX

Connections:
http://pastebin.com/KscGTeg2

File Differences:
http://pastebin.com/f5EqMyMw

Registry Differences:
http://pastebin.com/LxnEAF76

The rest of the report couldn't be pasted here or even upped as an attachment, even PasteBin let me down Confused

So I've upped it on Mediafire:
http://www.mediafire.com/view/8i9c8d7swt...Report.txt


TL;DR
If you fall into one of these fakes, you're screwed big time.
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Peter Sunde / Brokep recent interview "No one does tech for good " ProxyDuck 7 3,456 Jan 29, 2024, 19:34 pm
Last Post: lustrous
  What a cunning Trojan! Cov 24 44,753 Dec 17, 2018, 09:55 am
Last Post: dueda
  Court: 'State Secrets' Isn't A Magic Wand Gov't Can Wave To Avoid Embarrassment Mike 0 9,129 Nov 04, 2014, 03:23 am
Last Post: Mike
  The recent uploaded torrent of the Expendables 3 Trulmaelder 6 13,954 Aug 06, 2014, 05:37 am
Last Post: skittleZ-AU
  No porn in /recent please duhdoh 1 8,917 Jun 10, 2014, 06:24 am
Last Post: Spud17



Users browsing this thread: 1 Guest(s)