Waldek Trojan Hosted In (Netherlands Dronten Disk Group Ltd.)


1 Attempts connections to suspicious countries
2 Automatically unpack its own code
3 Creates hook to unknown module
4 Injects code into other processes
5 Makes DNS lookup of recently registered domain
6 Runs existing executable

Dns Lookup

Sample here : hxxp://

Hosting Infos :

Categories: Uncategorized