Jump to content


Photo

Sample Submission


  • This topic is locked This topic is locked
1 reply to this topic

#1 chill633

chill633

    New Member

  • Members
  • Pip
  • 1 posts

Posted 15 June 2011 - 05:23 PM

The attached file was removed from multiple machines. It was attempting to connect to two different domains, both handled by dynamic DNS services. It is not proxy-aware, so was not successfully phoning home and blocked by an outbound proxy that required authentication.

Virus Total link: http://www.virustota...1210-1307999066

Not detected by MBAM 1.51.0.1200 when explicitly scanned. Detected by Microsoft Security Essentials as Backdoor:Win32/Poison.M

Attached Files



#2 Fatdcuk

Fatdcuk

    Malware BBQ'er

  • Moderators
  • PipPipPipPipPipPip
  • 20,550 posts
  • Gender:Male
  • Location:127.0.0.1

Posted 15 June 2011 - 05:28 PM

Many thanks chill633,

I will take a look at the file shortly :)
Ade Gill
Research Engineer

Posted Image

Follow us: Twitter, Become a fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users