Analysis by: Rhena Inocencio
ALIASES:

Gen:Variant.Adware.Zusy (F-Secure)

 PLATFORM:

Windows

 OVERALL RISK RATING:
 DAMAGE POTENTIAL:
 DISTRIBUTION POTENTIAL:
 REPORTED INFECTION:
 INFORMATION EXPOSURE:

  • Threat Type: Potentially Unwanted Application

  • Destructiveness: No

  • Encrypted:

  • In the wild: Yes

  OVERVIEW

This potentially unwanted application arrives as a component bundled with malware/grayware packages. It may be manually installed by a user.

It requires its main component to successfully perform its intended routine.

  TECHNICAL DETAILS

Tamaño del archivo 1,731,072 bytes
Tipo de archivo DLL
Fecha de recepción de las muestras iniciales 04 Mar 2016

Arrival Details

This potentially unwanted application arrives as a component bundled with malware/grayware packages.

It may be manually installed by a user.

Other Details

This potentially unwanted application connects to the following possibly malicious URL:

  • {BLOCKED}.{BLOCKED}.99.180:80
  • www.{BLOCKED}tor.com
  • http://{BLOCKED}ller.info/u/?q={random}&c={random}&r={random}
  • http://{BLOCKED}ol.net/u/?q={random}&c={random}&r={random}
  • http://{BLOCKED}h.info/u/?q={random}&c={random}&r={random}

It requires its main component to successfully perform its intended routine.