Backdoor.RDPopen.B Files
%PROGRAMFILES%\StartupSlowFix\StartupSlowFix.exe
File name: StartupSlowFix.exeSize: 4.92 MB (4928512 bytes)
MD5: 29acc0d91e016a41985db5e316f380fd
Detection count: 42
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\StartupSlowFix
Group: Malware file
Last Updated: January 21, 2013
%LOCALAPPDATA%\CrashDumps\Best Buy pc app\aevuk.dll
File name: aevuk.dllSize: 212.99 KB (212992 bytes)
MD5: b1941239be584386455b97203992f80a
Detection count: 26
File type: Dynamic link library
Mime Type: unknown/dll
Path: %LOCALAPPDATA%\CrashDumps\Best Buy pc app
Group: Malware file
Last Updated: January 21, 2013
%LOCALAPPDATA%\1616221992012lsass.exe
File name: 1616221992012lsass.exeSize: 233.47 KB (233472 bytes)
MD5: 2122fb72fc947e6d83c796eed4d347a6
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %LOCALAPPDATA%
Group: Malware file
Last Updated: February 7, 2013
%LOCALAPPDATA%\562822192012lsasin.exe
File name: 562822192012lsasin.exeSize: 107 KB (107008 bytes)
MD5: 64d29634c003c03d41c2795cff3e011d
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %LOCALAPPDATA%
Group: Malware file
Last Updated: February 7, 2013
%LOCALAPPDATA%\224391092012lsrssrs.exe
File name: 224391092012lsrssrs.exeSize: 233.47 KB (233472 bytes)
MD5: 048530dda09e28b16d8e3ca9a3558561
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %LOCALAPPDATA%
Group: Malware file
Last Updated: February 7, 2013
%WINDIR%\SysWOW64\lssasr.exe
File name: lssasr.exeSize: 280.06 KB (280064 bytes)
MD5: 881ed1391f6bd7e1efdb7c23d935b112
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\SysWOW64
Group: Malware file
Last Updated: March 21, 2013
%TEMP%\0001b4ae.exe
File name: 0001b4ae.exeSize: 193.64 KB (193645 bytes)
MD5: 80773feacf7a738762c31745274a57f1
Detection count: 4
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: January 21, 2013
%LOCALAPPDATA%\10101611112012lsas81.exe
File name: 10101611112012lsas81.exeSize: 204.8 KB (204800 bytes)
MD5: 3ad4a0162c22206d33eab460b3f72feb
Detection count: 20
File type: Executable File
Mime Type: unknown/exe
Path: %LOCALAPPDATA%
Group: Malware file
Last Updated: January 23, 2013
%LOCALAPPDATA%\2411913112012lsax.exe
File name: 2411913112012lsax.exeSize: 167.93 KB (167936 bytes)
MD5: 4f1e0b14ec5dec0a5d76dec46eb8e59b
Detection count: 22
File type: Executable File
Mime Type: unknown/exe
Path: %LOCALAPPDATA%
Group: Malware file
Last Updated: February 7, 2013
%WINDIR%\SysWOW64\lssasr.exe
File name: lssasr.exeSize: 280.06 KB (280064 bytes)
MD5: fc75e81bcd64fe2b182e7e142cac48e3
Detection count: 1
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\SysWOW64
Group: Malware file
Last Updated: March 7, 2013
%APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup\FlasshPlayerV11.1.37.18.exe
File name: FlasshPlayerV11.1.37.18.exeSize: 167.93 KB (167936 bytes)
MD5: f8a97123896264751c7cc899410a6d81
Detection count: 54
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup
Group: Malware file
Last Updated: January 16, 2013
%SystemDrive%\Users\<username>\AppData\Local\954209112012lsas87.exe
File name: 954209112012lsas87.exeSize: 54.78 KB (54784 bytes)
MD5: b299227830dabf167856f5e436c585a9
Detection count: 85
File type: Executable File
Mime Type: unknown/exe
Path: %SystemDrive%\Users\<username>\AppData\Local
Group: Malware file
Last Updated: January 23, 2013
%SystemDrive%\Users\<username>\AppData\Local\163201292012lasrrb.exe
File name: 163201292012lasrrb.exeSize: 233.47 KB (233472 bytes)
MD5: e827c4b2ba3cced11ecb7f59accc3b14
Detection count: 64
File type: Executable File
Mime Type: unknown/exe
Path: %SystemDrive%\Users\<username>\AppData\Local
Group: Malware file
Last Updated: February 11, 2013
%WINDIR%\System32\drivers\Ambfilnt.sys
File name: Ambfilnt.sysSize: 24.06 KB (24064 bytes)
MD5: 1ea99df013ae45b51a5bb46c64d5966a
Detection count: 46
File type: System file
Mime Type: unknown/sys
Path: %WINDIR%\System32\drivers
Group: Malware file
Last Updated: January 21, 2013