ThreatExpert Report

Technical Details:

File System Modifications

The following files were created in the system:

Filename(s)

File Size

File Hash

%Temp%\ajax_loader.gif

3,208 bytes

MD5: 0x60D1F98DBB5A6EA9AC747C3E46C0C628
SHA-1: 0x25E7652B0EC4960AFBB84ADF52FD97D8A4E0048B

%Temp%\fondo.bmp

154,542 bytes

MD5: 0x5B5D4A028FAC546A6C9C26B30B379E2F
SHA-1: 0xC21938A117F36EF15933192A4AAA7A43DB5AA85D

%Temp%\header.bmp

25,818 bytes

MD5: 0xE5306EC2D3A31101C1A5437A26F7406B
SHA-1: 0xCA9310BFEFD1A99A75F81DAF723BD0C20AFE51F7

%Temp%\instloffer.exe

63,520 bytes

MD5: 0xDDAF5D68D540799E14A2344591D03ABE
SHA-1: 0xF5230E10F57D0976181CC7A0EF4E9E8ED5734A43

%Temp%\license.rtf

14,925 bytes

MD5: 0x2E3524697A1D7C6BE71B3EB3A6934AAD
SHA-1: 0x1CFE313F160BACC8273252584BD09CE559841380

%Temp%\moreinfo_offerbox.bmp

218,006 bytes

MD5: 0x390FA64E0484E3086AA411B474ABB4C4
SHA-1: 0x548093222EC3B94407FD2514D449E80BF0785B61

%Temp%\square_babylonv2.bmp

1,650 bytes

MD5: 0x811296BE3855DBE1B72546EC798F0D00
SHA-1: 0x900EA5E4DA8C46C2F1A52F39EAA3B791B43C41EB

%Temp%\square_offerbox.bmp

2,358 bytes

MD5: 0x7D3D4791F8EFEC9B26277661CF5363B6
SHA-1: 0x0F6C158124DFE2A0CF5E7E80CF720E961D3FF9FC

%Temp%\toolbar_bbv2.bmp

35,354 bytes

MD5: 0x1687C82F77A6E033890D7FBA31F85697
SHA-1: 0xA023733430F8E74F40DD6F70E30E05E244BFB559

[file and pathname of the sample #1]

293,696 bytes

MD5: 0x724E41CB1485CE9B3BDF01CCFA29ED48
SHA-1: 0x9BE16563F304D633823B50581460A0F2384C8F7D

Note:

%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).

All content ("Information") contained in this report is the copyrighted work of Threat Expert Ltd and its associated companies ("ThreatExpert") and may not be copied without the express permission of ThreatExpert.

The Information is provided on an "as is" basis. ThreatExpert disclaims all warranties, whether express or implied, to the maximum extent permitted by law, including the implied warranties that the Information is merchantable, of satisfactory quality, accurate, fit for a particular purpose or need, or non-infringing, unless such implied warranties are legally incapable of exclusion. Further, ThreatExpert does not warrant or make any representations regarding the use or the results of the use of the Information in terms of their correctness, accuracy, reliability, or otherwise.

Submission Summary:

Technical Details: