2 replies to this topic

[BlairWitch]

I sent a sample to Avira about a memory dump that i took from ctfmon.exe and i also uploaded it in here... So i got this information from Avira to my email...



Uploaded with ImageShack.us

So the memory dump is detected as malware that is able to spy out data and violate privacy... It's just that i dont understand that when i upload to virustotal the ctfmon.exe file in my computer, not a memory dump then none of the scanners detects it and also not any malware removal program is able to detect the malicious code in the memory. I mean if i get this right ain't a memory dump like a dumped memory so according to that there should be something malicious running in my computers memory...
Can someone share their knowledge about memory dumps? So that i could understand this... Thanks!

[BlairWitch]

Here is the file that i uploaded here http://forums.malwar...howtopic=104072
And here is the latest virustotal scan report https://www.virustot...sis/1326904314/

Still nothing is detected when i scan my computer. Not even in the computers memory.

[BlairWitch]

http://vil.nai.com/v...nt/v_423018.htm

Heres what the trojan is supposed to do...