A forum for reverse engineering, OS internals and malware analysis 

Forum for analysis and discussion about malware.
 #5329  by EP_X0FF
 Sat Mar 05, 2011 3:44 pm
markusg wrote:Adobe Acrobat pro keygen only by the crew.exe
http://www.virustotal.com/file-scan/rep ... 1299327702
Trojan Cerberus, payload mapped into IEXPLORE.exe, trojan infostealer, like all others.
Patcher.exe
http://www.virustotal.com/file-scan/rep ... 1299331856
Spatet aka Rebhip. Runs as svhost.exe
Runescape Gold Changer.exe
http://www.virustotal.com/file-scan/rep ... 1299333303
Trainer joined with Spatet.
Spatet starts as zombified vbc.exe