A forum for reverse engineering, OS internals and malware analysis 

Backdoor.Proxybox

Forum for analysis and discussion about malware.

Backdoor.Proxybox

 #15167  by kalptarunet
 Mon Aug 13, 2012 10:37 pm
Hi!

Looking Backdoor.Proxybox sample, please find details below.

MD5: 86908d0c072ce28a7650b78bab5a06e5
File size: 21.0 KB ( 21504 bytes )

%SystemDrive%\Documents and Settings\All Users\Application Data\Adobe\sp.dll
%SystemDrive%\Documents and Settings\All Users\Application Data\Adobe\fs.cfg
%SystemDrive%\Documents and Settings\All Users\Application Data\Adobe\rxsupply.sys

For more info :

http://www.symantec.com/connect/blogs/b ... um=twitter

Thanks in advance,

KTX

Re: Malware Requests, part 2

 #15169  by leeno
 Tue Aug 14, 2012 6:37 am
Check the attach file

kalptarunet wrote:Hi!

Looking Backdoor.Proxybox sample, please find details below.

MD5: 86908d0c072ce28a7650b78bab5a06e5
File size: 21.0 KB ( 21504 bytes )

%SystemDrive%\Documents and Settings\All Users\Application Data\Adobe\sp.dll
%SystemDrive%\Documents and Settings\All Users\Application Data\Adobe\fs.cfg
%SystemDrive%\Documents and Settings\All Users\Application Data\Adobe\rxsupply.sys

For more info :

http://www.symantec.com/connect/blogs/b ... um=twitter

Thanks in advance,

KTX
Attachments
pass: infected
(9.86 KiB) Downloaded 64 times

Re: Backdoor.Proxybox

 #15173  by Xylitol
 Tue Aug 14, 2012 10:00 am
In attach and >>161693
https://www.virustotal.com/file/06bf363 ... 344938199/
DrWeb BackDoor.Andromeda.22
BitDefender Gen:Variant.TDss.71
McAfee PWS-Zbot.gen.hv
AntiVir TR/Cridex.EB.23
av detection aww yeah
Attachments
infected
(112.45 KiB) Downloaded 66 times

Re: Backdoor.Proxybox

 #15176  by rkhunter
 Tue Aug 14, 2012 10:33 am
Yep, this is driver - 86908d0c072ce28a7650b78bab5a06e5.
 Return to “Malware”