File MD5Sum | SHA1SUM | SHA256SUM | FUZZY HASH | File Size |
---|---|---|---|---|
a561358bd48572bec97042a3326731be | fc0837b38e1040a3e01b04dc108ece7f4cc4997a | d9a62a25b5fb2c952309169795ff981670a03e1a34321e617e1258d848b87a9f | 6144:EcWMJJhqryYP/daqlzAFV9X3J5+qNBEA0HAcjdQ5YQFXCdwvZh:EczJJhqrVPldApX55+qzEBA7 | 281268 |
File Name |
---|
targetmarketgroupllc.exe |
Snort Class | Snort Alert | Count |
---|---|---|
N/A | No snort alerts generated | 0 |
AV Alert | AV Vendor |
---|---|
N/A | Symantec |
Artemis!212F78522E8E | McAfee |
Trojan.Win32.FakeTest.g | Kaspersky |
Generic | McAfee |
Artemis!1A36A985830C | McAfee |
Trojan-Downloader.Win32.CodecPack.ancw | Kaspersky |
Fakesurvey | Symantec |
Path | Folder Name |
---|---|
c:/Documents and Settings/dmc73144 | test |
c:/Documents and Settings/dmc73144 | test |
Action | Path | File Name |
---|
Action | Path |
---|
Action | Path | Val_Name | Val_Data |
---|
Action | Path | Val_Name | Val_Type | Mod_Val_Type | Val_Data | Mod_Val_Data |
---|
Action | Path | Val_Name | Val_Data | Mod_Val_Data |
---|---|---|---|---|
modified | HKLM/SOFTWARE/Microsoft/Cryptography/RNG | Seed | 08 65 E2 95 19 47 1B 91 A2 02 3E B8 E0 66 C4 80 A0 95 6F 0D 91 0B D5 2B EF 84 6A | 20 8F F4 85 E3 90 86 3B BC 72 2A 22 27 B0 CA 73 4C DE 4D D2 CD 17 84 25 34 6A 5 |
modified | HKLM/SOFTWARE/Microsoft/Cryptography/RNG | Seed | C3 08 B6 5B 7B C0 3B C5 0E A7 38 9A 9B 39 7B C4 91 6D 28 A7 48 6F A8 3C 27 DE 31 | C2 65 E0 12 49 2E D4 99 33 BC 13 F8 05 45 F0 0C AE DE 38 73 7F 0E 3E 42 DA A8 E |
modified | HKLM/SOFTWARE/Microsoft/Cryptography/RNG | Seed | FD D1 C0 DD C8 0A BB 8E 3B 18 19 50 A4 5F D2 CB 7B D7 C5 2D 95 EA 45 9C 9E 35 E5 | D8 96 A8 C4 43 6B 0B 59 FF 0B 7A 10 6E 67 9F 2F E3 3B E7 04 E5 68 57 65 6C 52 E |
modified | HKU/S-1-5-21-1844237615-562591055-839522115-1004/SessionInformation | ProgramCount | 0x00000002 | 0x00000001 |
DNS | DNS Response |
---|
DstIP | HTTP_HOST | HTTP_REQUEST_URI | HTTP_USER_AGENT | PROTOCOL |
---|---|---|---|---|
239.255.255.250 | 239.255.255.250:1900 | * | --blank-- | 0x11 |
PROTOCOL | SRC_PKTS | DST_PKTS | SRC_BYTES | DST_BYTES |
---|---|---|---|---|
17 | 1 | 0 | 175 | 0 |
DPORT | PROTOCOL | SRC_PKTS | DST_PKTS | SRC_BYTES | DST_BYTES |
---|---|---|---|---|---|
1900 | 17 | 1 | 0 | 175 | 0 |
Time | Date | Protocol | SrcIP | DstIP | Dir | Flags | Sport | Dport | Pkts | Bytes |
---|---|---|---|---|---|---|---|---|---|---|
01:15:15 | 2011-03-24 | 17 | 10.10.10.7 | 239.255.255.250 | -> | e | 4002 | 1900 | 1 | 175 |
Packer Name |
---|
Honey Trap Log File Location |
---|
PTFB Log File Location |
---|