Author Topic: Trojan Downloaders / Windows Privacy Center  (Read 3265 times)

0 Members and 1 Guest are viewing this topic.

August 21, 2009, 03:39:50 pm
Read 3265 times

eoin.miller

  • Sr. Member

  • Offline
  • ****

  • 179
Generic trojan downloaders:
siroamorello.com/upz/5c8abfe4c1c5c4c4c777ce31dc3c8824.exe
siroamorello.com/upz/install.48155.exe

Windows privacy center:
ue4x08f5myqdl.cn/u3.exe

VirusTotal report:
http://www.virustotal.com/analisis/f5ea579dc4f0cf945711169183e67f1512a84ee5e10645e23474b83a437ee376-1250869873

August 21, 2009, 03:55:41 pm
Reply #1

eoin.miller

  • Sr. Member

  • Offline
  • ****

  • 179
One more from the incident.
ovkanubergan.com/iS1TAC0e2ezv5S0c3V1LB1o9i - Trojan Horse

Also seeing some strange bin files getting downloaded from burbitan.com:
burbitan.com/AFS17-HJGEX-RG924?version=0&code=17&err=false&l=0&c=0

These requests are made with the User-Agent: Microsoft-Symbol-Server/6.5.0003.7

Anyone else seen something similiar?

August 21, 2009, 05:41:51 pm
Reply #2

eoin.miller

  • Sr. Member

  • Offline
  • ****

  • 179
Re-ran the trojan/downloader, saw it grab from this place:
webmasters-paradise.com/u3.exe - Windows Privacy Center (Malware)

VirusTotal Report:
http://www.virustotal.com/analisis/f5ea579dc4f0cf945711169183e67f1512a84ee5e10645e23474b83a437ee376-1250869873