Autovin

File SHA1: dbaabdabb5ec350614eecbda60eda79a2a8ad989
File MD5 : 1ba92cbe2d8244629c3321fdfa3d0b38
File Type: MS-DOS executable PE for MS Windows (GUI) Intel 80386 32-bit
Date: Fri Nov 6 23:24:11 MYT 2009

#– Files Created: –

/AutoRun.inf
/AutoRun.vbs
/Documents and Settings/Administrator/Local Settings/Temp/107109.tmp
/WINDOWS/system32/bcja.dll
/WINDOWS/system32/gfgg.dll
/WINDOWS/system32/system.exe
/system.exe

#– Registry Created: –

[SOFTWARE]
[SYSTEM]
+ [system\ControlSet002\Services\Driver]
+ [system\ControlSet002\Services\Driver\Security]
[SECURITIES]
[DEFAULT]
[NTUSER]

#– Malware Traffic – DNS: –

x.371777.com

#– Malware Traffic – Connections: –

61.147.119.210.80

#– Malware Traffic – www: –

x.371777.com

#– Screenshots: –

Screen After 90 Seconds