[MIRT#14144] Trojan-Dropper on energical.com AS16276

 CastleCops -> MIRT Reports
Author: tetak PostPosted: Sat Jun 28, 2008 1:40 pm    Post subject: [MIRT#14144] Trojan-Dropper on energical.com AS16276
Malware Alert
 
 Full Report: CastleCops Link/Trojan_Dropper_malware14144.html
 
 Consumed following related reports:

[14163] http://energical.com/video.exe
Changed status to confirmed malware.IP Converted: 91.121.105.199

dword = 1534683591
hex1 = 0x5b7969c7
hex2 = 0x5b.0x79.0x69.0xc7
oct = 0133.0171.0151.0307
video1.exe at this location is malware known as TrojanDropper:Win32/Nuwar.gen!ldt (Microsoft).View CIDR AS16276 Report: http://www.cidr-report.org/cgi-bin/as-report?as=16276

"16276 | FR | ripencc | 2001-02-15 | OVH OVH"<br />
Extended information for AS16276:
State/Province:
Country:
Responsible Domain: ovh.net
Abuse Email: abuse@ovh.net
Generated and sent email malware alert to respective parties.
Quote:
http://energical.com/video1.exe
CastleCops -> MIRT Reports

All times are GMT

Page 1 of 1


Powered by phpBB © 2001 phpBB Group