Tuesday, July 27, 2010

Win32/Chymine.A

Reading something about this trojan, which use the CVE-2010-2568 as spreading vector, I found that
the binary is located at hxxxp://205.209.171.119/bin.exe. The process try to contact the following host:

imoges.dyndns.tv

From Robtex:
 


No comments:

Post a Comment