Carberp - A modular information stealing trojan
Common Information
| Type | Value |
|---|---|
| UUID | 9df12ac5-fcf1-4df5-a1dd-e1dfd2efcb7a |
| Fingerprint | 38150baac651b0b2d247452f73d1b575457cd35d5953dc4810377512715859ec |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Feb. 28, 2011, 6:27 p.m. |
| Added to db | March 9, 2024, 11:41 p.m. |
| Last updated | Aug. 31, 2024, 8 a.m. |
| Headline | Carberp - A modular information stealing trojan |
| Title | Carberp - A modular information stealing trojan |
| Detected Hints/Tags/Attributes | 86/3/32 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 246 | mail.ru |
|
| Details | File | 1 | r00f_dll.dll |
|
| Details | File | 1 | screens_dll.dll |
|
| Details | File | 1260 | explorer.exe |
|
| Details | File | 1122 | svchost.exe |
|
| Details | File | 533 | ntdll.dll |
|
| Details | File | 3 | bsi.dll |
|
| Details | File | 1 | task.html |
|
| Details | File | 2 | vnc.pl |
|
| Details | File | 3 | passw.pl |
|
| Details | File | 3 | stopav.pl |
|
| Details | File | 3 | miniav.pl |
|
| Details | File | 2 | arcavir.exe |
|
| Details | File | 1 | update_tmp.exe |
|
| Details | File | 13 | ashdisp.exe |
|
| Details | File | 1 | setiface.dll |
|
| Details | File | 41 | avastui.exe |
|
| Details | File | 4 | avgtray.exe |
|
| Details | File | 1 | avgupd.exe |
|
| Details | File | 6 | avconfig.exe |
|
| Details | File | 1 | updaterc.dll |
|
| Details | File | 3 | livesrv.exe |
|
| Details | File | 1 | upgrepl.exe |
|
| Details | File | 1 | v_live_s.xml |
|
| Details | File | 8 | spideragent.exe |
|
| Details | File | 4 | drwebupw.exe |
|
| Details | File | 2 | mcshell.exe |
|
| Details | File | 3 | mcupdmgr.exe |
|
| Details | File | 24 | msseces.exe |
|
| Details | File | 4 | msmplics.dll |
|
| Details | File | 8 | almon.exe |
|
| Details | File | 1 | scf.dat |