contagio malware exchange: 015 Crime Koutodoor.F trojan web Feb-Mar 2012

About contagio exchange

CONTAGIO EXCHANGE Contagio exchange was created to absorb malware samples shared by readers of Contagio. This is meant to be a community driven malware collection.

Edit Aug 2013 - The community is busy and Mila too so this was not a very active site (my fault probably) so I will be just dumping malware strings here - it often helps in malware identification and googling is the best way.

With just strings, not exactly a fun blog to read but might become s useful resource over time.

I will not be posting samples here, just md5. You can find the corresponding samples on contagio or ping me if you can't find

P.S. Robot pictures delivered by Robohash.com (generated from file hashes)

Wednesday, April 4, 2012

015 Crime Koutodoor.F trojan web Feb-Mar 2012

MD5 ecd4aa51e755f174a39434df02775cc1

Download (pass infected)

SHA256:	1765ac579aa3307bd087b7da6018141a4fa7529dfbd0c5a14aa7816b15745ac8
SHA1:	be83ea65e884f8156e2242da2f65cde08db53d5f
MD5:	ecd4aa51e755f174a39434df02775cc1
File size:	39.8 KB ( 40768 bytes )
File name:	ecd4aa51e755f174a39434df02775cc1
File type:	Win32 EXE
Detection ratio:	31 / 42
Analysis date:	2012-03-31 20:37:14 UTC ( 4 days, 6 hours ago )

Antivirus	Result	Update
AhnLab-V3	Win-Trojan/Koutodoor8.Gen	20120331
AntiVir	TR/Rootkit.Gen	20120330
Antiy-AVL	-	20120331
Avast	Win32:Caxnet [Trj]	20120331
AVG	Hider.DXA	20120331
BitDefender	Gen:Variant.Koutodoor.4	20120331
ByteHero	-	20120328
CAT-QuickHeal	Trojan.Koutodoor.E	20120331
ClamAV	-	20120331
Commtouch	W32/Koutodoor.O.gen!Eldorado	20120331
Comodo	TrojWare.Win32.Zybr.A	20120331
DrWeb	Trojan.PWS.UClub.580	20120331
Emsisoft	Trojan.WinNT.Koutodoor!IK	20120331
eSafe	-	20120328
eTrust-Vet	Win32/Koutodoor.G!generic	20120331
F-Prot	W32/Koutodoor.O.gen!Eldorado	20120331
F-Secure	Gen:Variant.Koutodoor.4	20120331
Fortinet	W32/Koutodoor.A!tr.rkit	20120331
GData	Gen:Variant.Koutodoor.4	20120331
Ikarus	Trojan.WinNT.Koutodoor	20120331
Jiangmin	Trojan/Generic.bkiv	20120331
K7AntiVirus	Riskware	20120331
Kaspersky	HEUR:Trojan.Win32.Generic	20120331
McAfee	Koutodoor.gen.l	20120331
McAfee-GW-Edition	Koutodoor.gen.l	20120331
Microsoft	Trojan:Win32/Koutodoor.F	20120331
NOD32	a variant of Win32/Koutodoor.HE	20120331
Norman	W32/Koutodoor.CUS	20120331
nProtect	-	20120331
Panda	-	20120331
PCTools	-	20120326
Rising	RootKit.Win32.Obfuscator.g	20120331
Sophos	-	20120331
SUPERAntiSpyware	Trojan.Agent/Gen-Koocha	20120329
Symantec	-	20120331
TheHacker	-	20120331
TrendMicro	RTKT_KTDOOR.SMIB	20120331
TrendMicro-HouseCall	RTKT_KTDOOR.SMIB	20120331
VBA32	Malware-Cryptor.Inject.gen.2	20120330
VIPRE	Trojan.Win32.Koutodoor.e.dll (v)	20120331
ViRobot	-	20120331
VirusBuster	Rootkit.Koutodoor.Gen.7	20120331