Worm.Win32.Bybz - Page 2 - KernelMode.info

Re: Worm.Win32.Bybz

#4448 by EP_X0FF
Fri Jan 14, 2011 1:39 pm

markusg wrote:other unknown
1-5-20~1.EXE
http://www.virustotal.com/file-scan/rep ... 6da25c046-

This is Worm.Win32.Bybz.

Here is decrypted.
https://www.virustotal.com/file-scan/re ... 1295012204

Attachments

decrypted.rar

pass malware
(62.77 KiB) Downloaded 52 times

Ring0 - the source of inspiration

Username

EP_X0FF

Rank

Global Moderator

Posts

4947

Joined

Sun Mar 07, 2010 5:35 am

Location

Russian Federation

Contact

trojan

#4522 by markusg
Mon Jan 17, 2011 7:27 pm

n.exe
http://www.virustotal.com/file-scan/rep ... 1295291457

Attachments

n.rar

(45.35 KiB) Downloaded 51 times

Username

markusg

Posts

737

Joined

Mon Mar 15, 2010 2:53 pm

Re: trojan

#4529 by EP_X0FF
Tue Jan 18, 2011 6:54 am

markusg wrote:n.exe
http://www.virustotal.com/file-scan/rep ... 1295291457

This is Worm.Win32.Bybz with backdoor capabilities, crypted by VB crap.

Unpacked sample attached

http://www.virustotal.com/file-scan/rep ... 1295333446
http://www.virustotal.com/file-scan/rep ... 1295333644

STUB.dll is payload dll to be injected into IEXPLORE.exe

thread moved

Attachments

Malware.rar

pass: malware
(53.53 KiB) Downloaded 56 times

Ring0 - the source of inspiration

Username

EP_X0FF

Rank

Global Moderator

Posts

4947

Joined

Sun Mar 07, 2010 5:35 am

Location

Russian Federation

Contact

Re: Malware/VB (Autorunners, PWS)

#5241 by markusg
Tue Mar 01, 2011 12:52 pm

ds.exe
http://www.virustotal.com/file-scan/rep ... 1298980367

Attachments

ds.rar

(45.48 KiB) Downloaded 48 times

Username

markusg

Posts

737

Joined

Mon Mar 15, 2010 2:53 pm

Re: Malware/VB (Autorunners, PWS)

#5243 by EP_X0FF
Tue Mar 01, 2011 2:16 pm

markusg wrote:ds.exe
http://www.virustotal.com/file-scan/rep ... 1298980367

This is Worm.Win32.Bybz. (or Bubz)

Posts merged.

Attachments

ds.rar

unpacked, pass: malware
(29.14 KiB) Downloaded 46 times

Ring0 - the source of inspiration

Username

EP_X0FF

Rank

Global Moderator

Posts

4947

Joined

Sun Mar 07, 2010 5:35 am

Location

Russian Federation

Contact

Re: Malware/Not classified

#5404 by markusg
Thu Mar 10, 2011 12:48 pm

Crack.exe
http://www.virustotal.com/file-scan/rep ... 1299761073

Attachments

Crack.rar

(467.29 KiB) Downloaded 49 times

Username

markusg

Posts

737

Joined

Mon Mar 15, 2010 2:53 pm

Re: Malware/Not classified

#5409 by markusg
Thu Mar 10, 2011 3:35 pm

keygen.exe
http://www.virustotal.com/file-scan/rep ... 1299770871

Last edited by EP_X0FF on Fri Mar 11, 2011 11:28 am, edited 1 time in total. Reason: removed attach

Username

markusg

Posts

737

Joined

Mon Mar 15, 2010 2:53 pm

Re: Malware/Not classified

#5420 by markusg
Fri Mar 11, 2011 11:18 am

MORPH_~1.EXE
http://www.virustotal.com/file-scan/rep ... 1299839081
400.exe
http://www.virustotal.com/file-scan/rep ... 1299839275

Attachments

trojan.rar

(193.18 KiB) Downloaded 52 times

Username

markusg

Posts

737

Joined

Mon Mar 15, 2010 2:53 pm

Re: Malware/Not classified

#5421 by EP_X0FF
Fri Mar 11, 2011 11:27 am

markusg wrote:keygen.exe
http://www.virustotal.com/file-scan/rep ... 1299770871

Keygen for Dragon Age joined with Win32.Bybz (see attach for malware and unpacked)

Original attach removed.
Posts moved

Attachments

Malware.rar

pass: malware
(241.5 KiB) Downloaded 47 times

Ring0 - the source of inspiration

Username

EP_X0FF

Rank

Global Moderator

Posts

4947

Joined

Sun Mar 07, 2010 5:35 am

Location

Russian Federation

Contact

Re: Malware/Not classified

#5423 by EP_X0FF
Fri Mar 11, 2011 11:37 am

markusg wrote:Crack.exe
http://www.virustotal.com/file-scan/rep ... 1299761073

Trojan Muldrop.

Inside Worm.Win32.Bybz and Backdoor HostBooter v3.5

Posts moved to Bybz thread.

Ring0 - the source of inspiration

Username

EP_X0FF

Rank

Global Moderator

Posts

4947

Joined

Sun Mar 07, 2010 5:35 am

Location

Russian Federation

Contact