VSUB - Malware Submissions

Details on new malware submitted to anti-malware vendors for inclusion in their products...

Wednesday, 24 January 2007

VS0701005 Possible New Malware [Sdbot?]

Data on a sample of a suspected new malware from a suspected infected system.

This was caught by an end-user.

I have included data on a sample for your information and analysis.

1 copy has been trapped so far.

I haven't had a chance to test them on a goat system yet.

============================================================

Details:

FileName: rundll.exe
FileDateTime: 19/01/2007 14:05:00
Filesize: 1364992
MD5: 71fd1205f6d7550967bda6bf4491a50a
CRC32: 36E8176E
File Type: PE Executable

============================================================

Scan report of: rundll.exe

@Proventia-VPS -
AntiVir -
Avast! -
AVG -
BitDefender -
ClamAV -
Command -
Dr Web -
eSafe -
eTrust-INO -
eTrust-INO (BETA) -
eTrust-VET -
eTrust-VET (BETA) -
Ewido -
F-Prot -
F-Secure -
F-Secure (BETA) -
Fortinet suspicious
Fortinet (BETA) suspicious
Ikarus -
Kaspersky -
McAfee -
McAfee (BETA) -
Microsoft -
Nod32 -
Norman -
Panda W32/Sdbot.JHH.worm
Panda (BETA) W32/Sdbot.JHH.worm
QuickHeal -
Rising -
Sophos -
Symantec -
Symantec (BETA) -
Trend Micro -
Trend Micro (BETA) -
UNA -
VBA32 -
VirusBuster -
WebWasher Heuristic.Crypted
YY_Spybot -

============================================================

Labels: ,

0 Comments:

Post a Comment

Subscribe to Post Comments [Atom]

<< Home