Archive for November 11th, 2008

11
Nov

Database Update – 13 Files (Moderate Detection)

By djpnuemo Comments
Categories: Database Update and Malware

Here is an overdue update. I’ve been out of the loop for a bit. These files are of course available in /pnuemo-malware/ and please read the readme once more. I have changed again my cataloging. Sorry about that folks.

I have changed my cataloging again so please have a look at the readme. Also, there is a new feature this week. I have added a list of hashes from files I’ve collected but haven’t highlighted in this post. You can read more below or download the txt file.

AdobeMovie_v312.exe (Downloads or Creates: 9129837.exe & newdrv.sys)
Result: 15/36 (41.67%)
MD5: b362bd8f16d527b630793a520af91c67
VirusTotal
ThreatExpert Analysis

9129837.exe
Result: 28/36 (77.78%)
MD5: 642a588272e9fe723fb2f1dd8fccede5
VirusTotal
ThreatExpert Analysis

new_drv.sys
Result: 35/36 (97.23%)
MD5: a54de1d46ff7bdefbf9d9284c1916c5e
VirusTotal
ThreatExpert Analysis

doc.pdf (Downloads or Creates: vhosts.exe)
Result: 11/36 (30.56%)
MD5: 7156f4280b8ac9cda47074fb0fc49f86
VirusTotal

vhosts.exe
Result: 19/36 (52.78%)
MD5: 47565702c7796af23a64111e89a5ad91
VirusTotal
ThreatExpert Analysis

gadcom.exe
Result: 19/36 (52.78%)
MD5: ce4dbc7f1d6330ecc0f76f4fd31c3ac5
VirusTotal
ThreatExpert Analysis

file.exe (Downloads or Creates TDSSserv.sys rootkit)
Result: 25/36 (69.45%)
MD5: 40b3a11cd3d2a039dd1c305df1092be8
VirusTotal
ThreatExpert Analysis

install.exe
Result: 23/35 (65.72%)
MD5: 95207d0c1ec805b09ff0d72b67db0625
VirusTotal
ThreatExpert Analysis

figaro.sys & beep.sys
Result: 31/36 (86.12%)
MD5: a59f21ef436c750d259d136913c4be21
VirusTotal
ThreatExpert Analysis

brastk.exe
Result: 23/36 (63.89%)
MD5: fc039650b5152a40c5637fcd1abcd4c6
VirusTotal
ThreatExpert Analysis

23.exe (Downloads or Creates: E0D39066.dll & c39e8db.sys)
Result: 31/36 (86.12%)
MD5: da0ff007073da42f3328e16de0b61716
VirusTotal
ThreatExpert Analysis

E0D39066.dll
Result: 30/36 (83.34%)
MD5: 446dbceeaac129665302955c0f67c5f4
VirusTotal
ThreatExpert Analysis

c39e8db.sys
Result: 22/36 (61.12%)
MD5: 09f66bbe922e46f475e600b1110a3acb
VirusTotal
ThreatExpert Analysis

Continue reading ‘Database Update – 13 Files (Moderate Detection)’



 

November 2008
M T W T F S S
« Oct   Dec »
 12
3456789
10111213141516
17181920212223
24252627282930