McAfee TrustedSource
Create Account | Login  | What is TrustedSource?
 
Home  Threats and Trends  Malware Information
TrustedSource™ Query
Enter IP address, domain name or URL to check reputation/traffic patterns:
Search
 

Malware Information

Malware nameTrojan.Agent.ahze
TypeTrojan
Affected platformWin32
Media-Typeapplication/executable
MD5 checksumA2BE925AA32F2430CDDADEA9619650BB
Static fileyes
Filesize37,019 Bytes
Alias names
(also known as)
SophosTroj/Dloadr-BWB
McAfeeGeneric BackDoor
CA ETrustWin32/Thrap.R
Side effectsDownloads a malicious file
PropagationNo own spreading routine

Description:

Files

It copies itself to the following locations:
• %WINDIR%\svchost.exe
• %SYSDIR%\..\svchost.exe




It tries to download a file:

– The location is the following:
• http://kino.to/**********/stat.php
At the time of writing this file was not online for further investigation.
File details

Programming language:
 The malware program was written in MS Visual C++.

McAfee Homepage | Contact | Privacy Policy

Copyright © 2007-2009 McAfee, Inc. All Rights Reserved.

THE DATA IS FURNISHED, "AS IS" WITHOUT ANY WARRANTY OF ANY KIND, AND MCAFEE® HEREBY DISCLAIM ALL WARRANTIES, EXPRESS, IMPLIED OR STATUTORY INCLUDING, WITHOUT LIMITATION, ALL IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE, AND ANY WARRANTIES AS TO NON-INFRINGEMENT, AND IN NO EVENT SHALL MCAFEE® BE LIABLE FOR COSTS OF PROCURING SUBSTITUTE GOODS. IN NO EVENT WILL MCAFEE® BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, INCIDENTAL, EXEMPLARY, OR OTHER DAMAGES WHETHER OR NOT MCAFEE® HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH LOSS OR DAMAGE.