Tag: http malware

cojun15cart.com(HTTP Malware Hosted In United States Ashburn Amazon.com Inc.)


cojun15cart.com Description : Contains anti-debugging code It makes use of some deprecated flags in the Characteristics field of FileHeader PE section has SizeOfRawData set to zero  Behaviours : Automatically unpack its own code Deletes itself Deletes itself after reboot Drops .EXE file Manipulates Internet Explorer settings Runs existing executable Suspicious delay  TCP Connections TypeRead more...