Trojan.Downloader.Betrler.A
Posted: January 29, 2013
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 8/10 |
|---|---|
| Infected PCs: | 789 |
| First Seen: | January 29, 2013 |
|---|---|
| Last Seen: | March 18, 2024 |
| OS(es) Affected: | Windows |
Aliases
TrojWare.Win32.UMal.~A [Comodo]Trojan.VBCrypt [Ikarus]Gen:Variant.Graftor.26049 [BitDefender]Trojan-Dropper.Win32.Injector.ewkd [Kaspersky]probably a variant of Win32/Injector.RGT [NOD32]PWS-Zbot.gen.zh [McAfee]Dropper.Generic7.ARQG [AVG]Backdoor.Win32.Pushdo.pgd [Kaspersky]Win32:Downloader-SGN [Trj] [Avast]Trojan.ADH.2 [Symantec]Trj/Genetic.gen [Panda]Dropper.Generic7.ATZC [AVG]W32/Kuluoz.GK!tr [Fortinet]Trojan-Dropper.Win32.Dorifel [Ikarus]Dropper/Win32.Dorifel [AhnLab-V3]
More aliases (290)
More aliases (290)
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:%USERPROFILE%\857648585795695\winvsn.exe
File name: winvsn.exeSize: 139.26 KB (139264 bytes)
MD5: ee2eea5e630ff2bb586b9d6042e79de2
Detection count: 187
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\857648585795695
Group: Malware file
Last Updated: January 31, 2013
%USERPROFILE%\35735835345345\winsvc.exe
File name: winsvc.exeSize: 118.78 KB (118784 bytes)
MD5: 8e234052f15dc9f41a8f1c6e89f6fd01
Detection count: 110
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\35735835345345
Group: Malware file
Last Updated: January 31, 2013
C:\Users\<username>\Desktop\SOFTWARE\NUEVAS VERSIONES DE PROGRAMAS 2012\Portrait Professional Studio\PortraitProfessionalStudio.exe
File name: PortraitProfessionalStudio.exeSize: 6.84 MB (6840320 bytes)
MD5: 09a6109c98c7b723af353dd316fc3142
Detection count: 87
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\Desktop\SOFTWARE\NUEVAS VERSIONES DE PROGRAMAS 2012\Portrait Professional Studio\PortraitProfessionalStudio.exe
Group: Malware file
Last Updated: March 19, 2024
%USERPROFILE%\8962950.dll
File name: 8962950.dllSize: 184.83 KB (184832 bytes)
MD5: 84034f1f49bd01e033e1060bbd60c75c
Detection count: 82
File type: Dynamic link library
Mime Type: unknown/dll
Path: %USERPROFILE%
Group: Malware file
Last Updated: January 31, 2013
%TEMP%\013b4cc5ea2a.exe
File name: 013b4cc5ea2a.exeSize: 320.5 KB (320504 bytes)
MD5: f802a7035b2a50a663f934b4bece46cf
Detection count: 70
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: January 31, 2013
%USERPROFILE%\zeaquzbekcyc.exe
File name: zeaquzbekcyc.exeSize: 35.28 KB (35288 bytes)
MD5: fc95b55c3b856d91f7d3607609195137
Detection count: 30
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%
Group: Malware file
Last Updated: January 31, 2013
%SystemDrive%\Users\<username>\AppData\Roaming\csrsss.exe
File name: csrsss.exeSize: 132.09 KB (132096 bytes)
MD5: b681d036c1d78ab5ba629ccc556f97af
Detection count: 28
File type: Executable File
Mime Type: unknown/exe
Path: %SystemDrive%\Users\<username>\AppData\Roaming
Group: Malware file
Last Updated: January 31, 2013
%COMMONPROGRAMFILES%\Microsoft Shared\Triedit\{9CE3D479-F1E9-4b92-82CE-B11A442C6F69}.sys
File name: {9CE3D479-F1E9-4b92-82CE-B11A442C6F69}.sysSize: 1.89 MB (1899520 bytes)
MD5: 66012d9fab9b787e928203fc142f86a0
Detection count: 23
File type: System file
Mime Type: unknown/sys
Path: %COMMONPROGRAMFILES%\Microsoft Shared\Triedit
Group: Malware file
Last Updated: September 14, 2018
%WINDIR%\adsclick.exe
File name: adsclick.exeSize: 45.05 KB (45056 bytes)
MD5: 4ca9a1a87f346b87d8bc52ee0c745c5d
Detection count: 22
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%
Group: Malware file
Last Updated: January 31, 2013
%ALLUSERSPROFILE%\ftp.exe
File name: ftp.exeSize: 465.92 KB (465920 bytes)
MD5: eb2efb2414dcad9a68041c39b927115d
Detection count: 16
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%
Group: Malware file
Last Updated: January 31, 2013
%APPDATA%\skype.dat
File name: skype.datSize: 116.22 KB (116224 bytes)
MD5: 3171ec90780ffa6760e47b0a5864ba26
Detection count: 16
File type: Data file
Mime Type: unknown/dat
Path: %APPDATA%
Group: Malware file
Last Updated: January 31, 2013
%USERPROFILE%\M-876788787\winmgrs.exe
File name: winmgrs.exeSize: 68.6 KB (68608 bytes)
MD5: 26512e4998e70b6000cce56d3f6939f2
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\M-876788787
Group: Malware file
Last Updated: January 31, 2013
%APPDATA%\uchwcrmxwvqotpocurb.exe
File name: uchwcrmxwvqotpocurb.exeSize: 1.1 MB (1106344 bytes)
MD5: d770554455a70f3a3ad8e3326ddca765
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: January 29, 2013
%APPDATA%\XPNiGhhRaCGcZGMdMKUD.exe
File name: XPNiGhhRaCGcZGMdMKUD.exeSize: 73.72 KB (73728 bytes)
MD5: dc4f22eb370cac778f830e3809ea2e29
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: February 26, 2013
%LOCALAPPDATA%\ViralixVideo\vrlxur.exe
File name: vrlxur.exeSize: 108.03 KB (108032 bytes)
MD5: 6eb4988178b79f89776f1ff0a2622d87
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %LOCALAPPDATA%\ViralixVideo
Group: Malware file
Last Updated: January 31, 2013
%LOCALAPPDATA%\gegnrhgn\okxdckqp.exe
File name: okxdckqp.exeSize: 101.03 KB (101032 bytes)
MD5: 115ff6c1caaf96f9cb533384a6a38681
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %LOCALAPPDATA%\gegnrhgn
Group: Malware file
Last Updated: January 31, 2013
%LOCALAPPDATA%\4154141252012setup.exe
File name: 4154141252012setup.exeSize: 1.68 MB (1686004 bytes)
MD5: e8906de85a78172f593bee1b4db8cddc
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %LOCALAPPDATA%
Group: Malware file
Last Updated: February 6, 2013
%SystemDrive%\PlanetVO\LiveUpdate\liveupdate.exe
File name: liveupdate.exeSize: 593.92 KB (593920 bytes)
MD5: c3451a9b6a034612a533eb38cbfa4ea7
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %SystemDrive%\PlanetVO\LiveUpdate
Group: Malware file
Last Updated: January 31, 2013
%LOCALAPPDATA%\Google\CrashDumps\qayfxxzd.dll
File name: qayfxxzd.dllSize: 425.98 KB (425984 bytes)
MD5: fc6af0eb3bf4dbafe49db774f9850c3e
Detection count: 5
File type: Dynamic link library
Mime Type: unknown/dll
Path: %LOCALAPPDATA%\Google\CrashDumps
Group: Malware file
Last Updated: January 31, 2013
%WINDIR%\Temp\temp37.exe
File name: temp37.exeSize: 842.24 KB (842240 bytes)
MD5: 883409798565b38f3ca09db0d3a50eda
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\Temp
Group: Malware file
Last Updated: January 31, 2013
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.