Downloader.A_2060 is a Trojan. A Trojan is a program that pretends to have a valid use, but in fact modifies the user's computer in malicious ways. Trojans do not replicate or spread to other computers.
Mutexes created
Directory level activity- create - dir - C:\My Downloads
File level activity- write - file - C:\My Downloads\Gearhead Garage Full Downloader.exe
- write - file - C:\My Downloads\AikaQuest3Hentai Key Generator.exe
- write - file - C:\My Downloads\Dweebs 2 Key Generator.exe
- write - file - C:\My Downloads\Comanche 4 ISO - Full Downloader.exe
- write - file - C:\My Downloads\Stronghold Crusader ISO - Full Downloader.exe
- write - file - C:\My Downloads\The Eye Of Kraken Full Downloader.exe
- write - file - C:\My Downloads\Dark Age Of Camelot Shrouded Isles Patch.exe
- write - file - C:\My Downloads\Cabelas Ultimate Deer Hunt 2 Key Generator.exe
- write - file - C:\My Downloads\Zidane-ScreenInstaler Key Generator.exe
- write - file - C:\My Downloads\Age of Sail 2 Crack.exe
- write - file - C:\My Downloads\Dweebs 2 Crack.exe
- write - file - C:\My Downloads\Comanche 4 Patch.exe
- write - file - C:\My Downloads\Quake 3 Arena Full Downloader.exe
- write - file - C:\My Downloads\AikaQuest3Hentai Full Downloader.exe
- write - file - C:\My Downloads\The Sun Of All Fears ISO - Full Downloader.exe
- write - file - C:\My Downloads\Grand Prix 4 Patch.exe
- write - file - C:\My Downloads\Prisoner Of War ISO - Full Downloader.exe
- write - file - C:\My Downloads\Elder Scrolls III Morrowind THX Brrbrr Crack.exe
- write - file - C:\My Downloads\Winrar 3.2 Patch.exe
- write - file - C:\My Downloads\AikaQuest3Hentai Crack.exe
- write - file - C:\My Downloads\Need For Speed 5 Porsche Unleashed Key Generator.exe
- write - file - C:\My Downloads\Hard Truck 18 Wheels of Steel Patch.exe
- write - file - C:\My Downloads\CKY3 - Bam Margera World Industries Alien Workshop Full Downloader.exe
- write - file - C:\My Downloads\Strike Fighter Project 1 Key Generator.exe
- write - file - C:\My Downloads\Warcraft 3 battle.net Full Downloader.exe
- write - file - C:\My Downloads\Tomb Raider 3 ISO - Full Downloader.exe
- write - file - C:\My Downloads\BORLAND Delphi 7 ISO - Full Downloader.exe
- write - file - C:\My Downloads\Squad Battles Eagles Strike Patch.exe
- write - file - C:\My Downloads\Internet and Computer Speed Booster Full Downloader.exe
- write - file - C:\My Downloads\Emperor Rise Of the Middle Kingdom Crack.exe
- write - file - C:\My Downloads\Duke Nukem Manhattan Project ISO - Full Downloader.exe
- write - file - C:\My Downloads\Need For Speed 5 Porsche Unleashed Crack.exe
- write - file - C:\My Downloads\Gearhead Garage Crack.exe
- write - file - C:\My Downloads\Hitman 2 Silent Assassin Full Downloader.exe
- write - file - C:\My Downloads\F1 Grand Pix 4 Patch.exe
- write - file - C:\My Downloads\Hoyle Card Games 2003 ISO - Full Downloader.exe
- write - file - C:\My Downloads\Dark Age Of Camelot Shrouded Isles Full Downloader.exe
- write - file - C:\My Downloads\Gladiator Patch.exe
- write - file - C:\My Downloads\KaZaA Spyware Remover ISO - Full Downloader.exe
- write - file - C:\My Downloads\Microsoft Office XP (English) Full Downloader.exe
- write - file - C:\My Downloads\FIFA 2003 ISO - Full Downloader.exe
- write - file - C:\My Downloads\Necromania Trap Of Darkness Patch.exe
- write - file - C:\My Downloads\MSN Password Hacker and Stealer Full Downloader.exe
- write - file - C:\My Downloads\Crazy Taxi Key Generator.exe
- write - file - C:\My Downloads\Windows XP Patch.exe
- write - file - C:\My Downloads\Winzip 8.0 Crack.exe
- write - file - C:\My Downloads\Necromania Trap Of Darkness Full Downloader.exe
- write - file - C:\My Downloads\Half-life WON Patch.exe
- write - file - C:\My Downloads\Hacking Tool Collection ISO - Full Downloader.exe
- write - file - C:\My Downloads\Black And White Crack.exe
Registry level activity- write - registry - HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunRAV7
Library level activity- load - library - KERNEL32.DLL
- load - library - advapi32.dll
- load - library - comctl32.dll
- load - library - gdi32.dll
- load - library - mpr.dll
- load - library - ole32.dll
- load - library - oleaut32.dll
- load - library - user32.dll
- load - library - WININET.DLL
- load - library - wsock32.dll
- load - library - C:\DOCUME~1\TestMachine\LOCALS~1\Temp\1711bb90bbc7b8d99e73512dbad410b9.ENU
- load - library - C:\DOCUME~1\TestMachine\LOCALS~1\Temp\1711bb90bbc7b8d99e73512dbad410b9.EN
- load - library - USER32.DLL
- load - library - kernel32.dll
- load - library - C:\DOCUME~1\TestMachine\LOCALS~1\Temp\1711bb90bbc7b8d99e73512dbad410b9.bin
- load - library - kernel32.dll
Process API calls used
- NtFreeVirtualMemory
- NtCreateSection
- ZwMapViewOfSection
- ZwMapViewOfSection
Registry API calls used
- RegOpenKeyExA
- RegQueryInfoKeyA
- RegEnumKeyExA
- RegCloseKey
- RegCreateKeyExA
- RegQueryValueExA
- NtOpenKey
- NtCreateKey
- NtQueryValueKey
- NtSetValueKey
- RegSetValueExA
- RegQueryValueExA
System API calls used
- LdrLoadDll
- LdrGetProcedureAddress
- LdrGetDllHandle
- LdrGetProcedureAddress
Filesystem API calls used
- CreateDirectoryW
- NtOpenFile
- NtSetInformationFile
- CopyFileA
- FindFirstFileExW
- NtCreateFile
- NtQueryInformationFile
- NtWriteFile
- NtQueryDirectoryFile
- NtReadFile
- FindFirstFileExW
Network
Domains:NA
DNS Request:NA
HTTP Request:NA
DLL related data
Number of DLL's imported = 10
- KERNEL32.DLL
- advapi32.dll
- comctl32.dll
- gdi32.dll
- mpr.dll
- ole32.dll
- oleaut32.dll
- user32.dll
- WININET.DLL
- wsock32.dll
|
