ViRobot/HAURI

Trojan.Win32.Infostealer.107520
種類
Trojan Horse
危険度/拡散度
/
発見日
[korea] 2014-01-20 [Foreign] 2014-01-20
Virobot対応
2014-01-20 [Able to detect & repair]

[File]

en.dll (MD5 : DAF9CA557E4CA739FBA0ED55AB534A58, SIZE : 107,520)

 

A. Main symptoms of infection

It collects computer information and sends collected data to a specific email.

 

B. Analysis information

(1) It starts a Windows service using created DLL files. 


(2) Other action is same as ko.dll(Trojan.Win32.S.Infostealer.55296), but following contents are different.
 ID : ************@india.com
PW : *****************
File created path : C:WINDOWSMedia

 

[How to repair]

Reparable by ViRobot engine ver.2014-01-20 or above.