| | Infection | Listen | Egg-download | Upload |
|---|
| 445 (76%) | 80 (100%) | 1032 (52%)
1031 (46%) | 80 (95%) |
|
| | Processes | Executables |
|---|
| MSMSGS.EXE (100%) | ndisrd.sys (100%)
DCPROMO.LOG (100%)
index.dat (100%)
random 6/7/8
character filename |
|
| ...CurrentVersion\InternetSettings (100%)
...InternetSettings\Zones (100%)
...Windows\CurrentVersion (100%)
...Zones\0 (100%)
...Zones\1 (100%)
...Zones\2 (100%)full list |
|
| 1:2000032 (100%)
1:2000033 (100%)
1:2001683 (100%)
1:2466 (100%)
1:5001684 (100%)
1:99913 (100%)full list |
|
| | MD5 | Antivirus labels | Domain |
|---|
a12cab... (65%)
df17a6... (27%)diversity: 2.9%
full list | berbew (100%)
padobot (100%)
berkor (99%)
doxpar (98%)
korgo (95%)
hangup (95%)full list | 53bank.com (100%)
acrolein-hawk.rubanking.h... (100%)
alfabank.ru (100%)
asmworm.com (100%)
atmacasoft.com (100%)
barclays.com (100%)full list |
|
