Submission Summary:

What's been foundSeverity Level
Downloads/requests other files from Internet.
Creates a startup registry entry.

 

Technical Details:

 

File System Modifications

#Filename(s)File SizeFile Hash
1 %CommonDesktopDir%\PC Power Speed.lnk 670 bytes MD5: 0x8BF90EF39BC00D5434467018009E2FD5
SHA-1: 0x5FC6A7B7BA50D038F4DE1D0AC17CF2911BDCE890
2 %CommonPrograms%\PC Power Speed\PC Power Speed on the Web.url 54 bytes MD5: 0xE86DF4EE02A773CC00C4281B2B5782B7
SHA-1: 0xFAE4C9893DA0028531F9232A56DAC88EE1544594
3 %CommonPrograms%\PC Power Speed\PC Power Speed.lnk 682 bytes MD5: 0x8ED5FE0A368A49353C7317E17104D8C1
SHA-1: 0x4151197C8B499D08882129C9792D6C927FE7F26B
4 %CommonPrograms%\PC Power Speed\Uninstall PC Power Speed.lnk 662 bytes MD5: 0x8B00251AB25FE497004835014DE0EB5F
SHA-1: 0x754712F206AB703A052E103BAC4A1AFDD43381E6
5 %AppData%\PCPowerSpeed\banner_bottom.png
%AppData%\PCPowerSpeed\banner_left.png
89 bytes MD5: 0x287E5ABDBBFA3D3300375774E91A557B
SHA-1: 0xB21378D1BEF2F0B593FF6DB2A2441B0BBDE3705D
6 %AppData%\PCPowerSpeed\banner_free.png 256,840 bytes MD5: 0xAE180EEA113A4A1E385B798744432B2F
SHA-1: 0xB9DF76FF91EA801DD6271BAF4CC1402A05F2E127
7 %AppData%\PCPowerSpeed\banner_uninst.png 174,355 bytes MD5: 0x3DFF9A5D64094EFA4873D8191CCE8D88
SHA-1: 0x576CC2BA2E922664CBE057B69FA750F0496EE107
8 %AppData%\PCPowerSpeed\faq.htm 13,840 bytes MD5: 0xFF9FCC63D127082A536ADC8C90A018EE
SHA-1: 0x5E87D7AAB36B51A2F286F8950FADB0692D9A4FB5
9 %ProgramFiles%\PCPowerSpeed\PCPowerSpeed.exe 2,719,872 bytes MD5: 0xA368B3A611C95906B465F25FE564E0EE
SHA-1: 0x4CE2F4769EDF2FBA6BAC5D8A03A1AAA033BB1AF3
10 %ProgramFiles%\PCPowerSpeed\PCPowerTray.exe 317,056 bytes MD5: 0xB1E8D37731FF914268029BF5D5BBA2E4
SHA-1: 0x726D5A6D33346F18F6AF34A088E405E1109C893B
11 %ProgramFiles%\PCPowerSpeed\unins000.dat 48,827 bytes MD5: 0x3E6B9081DB548D64640E28805FE01332
SHA-1: 0x6CDACD800B12318853CE4B1A9550E058E64EE83F
12 %ProgramFiles%\PCPowerSpeed\unins000.exe 1,169,040 bytes MD5: 0xF516FB67B0268F9E892AA1551D43D706
SHA-1: 0xD06F3DE68F751051F40557F394499A27E43B87DA
13 %ProgramFiles%\PCPowerSpeed\unins000.msg 10,684 bytes MD5: 0x2CBA1AADDF73D309B54E65692E8091E3
SHA-1: 0xF652AF76B4A9D17DB8CE5EF68ED4ECC41DD4AAEE
14 [file and pathname of the sample #1] 1,747,152 bytes MD5: 0xC96866B18686CABBCD5D94F9BA56956E
SHA-1: 0x7B44230622D33546B90095CF2B394CBAE0B2E683

 

Registry Modifications

 

Other details

Czech Republic
Netherlands

Remote HostPort Number
64.135.82.11080

 

 

All content ("Information") contained in this report is the copyrighted work of Threat Expert Ltd and its associated companies ("ThreatExpert") and may not be copied without the express permission of ThreatExpert.

The Information is provided on an "as is" basis. ThreatExpert disclaims all warranties, whether express or implied, to the maximum extent permitted by law, including the implied warranties that the Information is merchantable, of satisfactory quality, accurate, fit for a particular purpose or need, or non-infringing, unless such implied warranties are legally incapable of exclusion. Further, ThreatExpert does not warrant or make any representations regarding the use or the results of the use of the Information in terms of their correctness, accuracy, reliability, or otherwise.

Copyright © 2014 ThreatExpert. All rights reserved.