Home Malware Programs Worms Worm.Verst.A.dll

Worm.Verst.A.dll

Posted: January 12, 2011

Threat Metric

Threat Level: 5/10
Infected PCs: 347
First Seen: January 5, 2011
OS(es) Affected: Windows

Worm.Verst.A.dll is a network worm that copies itself across the network. Worm.Verst.A.dll may exploit a vulnerability in the Windows to download its malicious files into a system. Worm.Verst.A.dll infects the system when users download an executable file usually found in spam e-mail attachments, corrupt video media codecs, pornographic related images and movie downloads. Computers users are advised to have an up-to-date antivirus software which will detect the worm executable upon download and prevent the computer from becoming a host for Worm.Verst.A.dll.

Aliases

Trojan.Hiloti.2 [DrWeb]a variant of Win32/Kryptik.IXO [NOD32]Hiloti.gen.i [McAfee]Hiloti.CL [AVG]a variant of Win32/Kryptik.JSF [NOD32]TrojWare.Win32.TrojanDownloader.Mufanom.GEN [Comodo]a variant of Win32/Cimag.AQ [NOD32]Trojan.Win32.Hiloti.aa (v) [Sunbelt]Trojan.Packed.20961 [DrWeb]Win32:MalOb-CB [Avast]a variant of Win32/Kryptik.GXJ [NOD32]Hiloti.gen.e [McAfee]a variant of Win32/Kryptik.JNA [NOD32]Downloader.Generic10.BPAF [AVG]W32/FraudLoad.YDKD!tr.dldr [Fortinet]
More aliases (156)

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



%WINDIR%\mev801.dll File name: mev801.dll
Size: 74.24 KB (74240 bytes)
MD5: bbb641bbfdd8568afdcb805c4568479a
Detection count: 80
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%
Group: Malware file
Last Updated: January 13, 2011
%LOCALAPPDATA%\DapkbonA.dll File name: DapkbonA.dll
Size: 90.11 KB (90112 bytes)
MD5: f8edd5961d163efe95e0ae22539eff4f
Detection count: 75
File type: Dynamic link library
Mime Type: unknown/dll
Path: %LOCALAPPDATA%
Group: Malware file
Last Updated: January 18, 2011
%APPDATA%\32608\bbzzkzz17.exe File name: bbzzkzz17.exe
Size: 3.84 MB (3849728 bytes)
MD5: 3aa4ef62a77ebdd931f6406236dd05e5
Detection count: 56
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\32608
Group: Malware file
Last Updated: January 10, 2011
%APPDATA%\A51A97BD13E87178F4EC5F6915D4D46A\highupdt718kfix.exe File name: highupdt718kfix.exe
Size: 1.05 MB (1053184 bytes)
MD5: cfe2e828aabf39c79700f4f2c7b3eb54
Detection count: 54
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\A51A97BD13E87178F4EC5F6915D4D46A
Group: Malware file
Last Updated: January 9, 2011
%APPDATA%\53279\bbzzkzz17.exe File name: bbzzkzz17.exe
Size: 3.85 MB (3850240 bytes)
MD5: 708f1bec21bac5927f0e270bb6d89f21
Detection count: 42
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\53279
Group: Malware file
Last Updated: January 9, 2011
%TEMP%\veusll.exe File name: veusll.exe
Size: 91.13 KB (91136 bytes)
MD5: 00ba18d34cf70773bef737a331867a21
Detection count: 37
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: January 9, 2011
%WINDIR%\kcec42.dll File name: kcec42.dll
Size: 94.2 KB (94208 bytes)
MD5: 33e82f3408c1eb7a070a01df2ab87330
Detection count: 36
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%
Group: Malware file
Last Updated: January 24, 2011
%APPDATA%\Identities\winuplwin24\msftldr.dll File name: msftldr.dll
Size: 28.67 KB (28672 bytes)
MD5: 2cffcd8a6d07e4abbf61e271c73a26cf
Detection count: 28
File type: Dynamic link library
Mime Type: unknown/dll
Path: %APPDATA%\Identities\winuplwin24
Group: Malware file
Last Updated: January 9, 2011
%ALLUSERSPROFILE%\Application Data\msedit\3048877.exe File name: 3048877.exe
Size: 512 KB (512000 bytes)
MD5: d210b2ec9a19515eefed72a5d2dea102
Detection count: 21
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Application Data\msedit
Group: Malware file
Last Updated: January 5, 2011
%WINDIR%\nvsvc32.exe File name: nvsvc32.exe
Size: 86.01 KB (86016 bytes)
MD5: 4d26a9601a2f892bff77dbc7da62dedb
Detection count: 19
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%
Group: Malware file
Last Updated: January 9, 2011
%APPDATA%\Microsoft\conhost.exe File name: conhost.exe
Size: 129.53 KB (129536 bytes)
MD5: 030b6fb3b66dc271c5471d273fa12d5a
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Microsoft
Group: Malware file
Last Updated: January 6, 2011
%APPDATA%\SysWin\lsass.exe File name: lsass.exe
Size: 177.15 KB (177152 bytes)
MD5: 85d8e35dd8bfaaeed6b952279c5acad2
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\SysWin
Group: Malware file
Last Updated: January 9, 2011
%WINDIR%\nvsvc32.exe File name: nvsvc32.exe
Size: 87.55 KB (87552 bytes)
MD5: 456ea872a0ecc0f8e830a72bbfeed4c4
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%
Group: Malware file
Last Updated: January 6, 2011
%TEMP%\m.29.tmp.exe File name: m.29.tmp.exe
Size: 2.83 MB (2831360 bytes)
MD5: cd90229d34461d3346ec9cad4b77448d
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: January 9, 2011
C:\RECYCLER\S-1-5-21-0522728457-5259368062-370914407-7158\csisf.exe File name: csisf.exe
Size: 98.3 KB (98304 bytes)
MD5: 7f417b837e67f32667de806ad295dc8b
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-0522728457-5259368062-370914407-7158
Group: Malware file
Last Updated: January 9, 2011
%WINDIR%\system32\config\systemprofile\Impostazioni locali\Dati applicazioni\Application Policy Service\svchost.exe File name: svchost.exe
Size: 3.92 MB (3929600 bytes)
MD5: 2ca5aaebbb8f46a5abf5ab501b2fd49f
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\Impostazioni locali\Dati applicazioni\Application Policy Service
Group: Malware file
Last Updated: January 9, 2011
%LOCALAPPDATA%\tPlapi.dll File name: tPlapi.dll
Size: 90.11 KB (90112 bytes)
MD5: e323c582e28aa6b827354102270d6439
Detection count: 5
File type: Dynamic link library
Mime Type: unknown/dll
Path: %LOCALAPPDATA%
Group: Malware file
Last Updated: January 24, 2011
Loading...