Trojan.Downloader.FakeRean

By CagedTech in Trojans

Threat Scorecard

Threat Level:	80 % (High)
Infected Computers:	247

First Seen:	November 30, 2010
OS(es) Affected:	Windows

Aliases

15 security vendors flagged this file as malicious.

Anti-Virus Software	Detection
AVG	Crypt.YQS
Ikarus	Trojan.Crypt
AhnLab-V3	Win-Trojan/Fakeav.166912.W
AntiVir	TR/Agent.166400.3
Kaspersky	Trojan.Win32.FraudPack.beuy
McAfee	Generic.dx!tii
AVG	SHeur3.ARJW
eTrust-Vet	Win32/Tnega.SSE
BitDefender	Trojan.Generic.KD.24776
Kaspersky	Trojan.Win32.FraudPack.beqa
AVG	Downloader.Generic10.JNO
Sunbelt	Trojan.Win32.Generic.pak!cobra
AntiVir	TR/Dldr.FakeAV.AX
BitDefender	Trojan.Generic.KD.26359
Kaspersky	Trojan.Win32.FraudPack.bfho

File System Details

Trojan.Downloader.FakeRean may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	Windows-Update-KB237643-x86-ENU.exe	e41e357860759915fc9b352d70ac9cea	139
Name: Windows-Update-KB237643-x86-ENU.exe MD5: e41e357860759915fc9b352d70ac9cea Size: 140.28 KB (140288 bytes) Detections: 139 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: December 7, 2010
2.	baka10.exe	8c58c1909bf8419e429b68118607073f	17
Name: baka10.exe MD5: 8c58c1909bf8419e429b68118607073f Size: 164.35 KB (164352 bytes) Detections: 17 Type: Executable File Path: %APPDATA%\MSA Group: Malware file Last Updated: December 14, 2010
3.	~TM3CC2.tmp	fecf32f92f476f06ebb6e9120715aefb	17
Name: ~TM3CC2.tmp MD5: fecf32f92f476f06ebb6e9120715aefb Size: 187.9 KB (187904 bytes) Detections: 17 Type: Temporary File Path: %TEMP% Group: Malware file Last Updated: November 30, 2010
4.	baka10.exe	18daf98dc8d03988d6c3608d268e0133	16
Name: baka10.exe MD5: 18daf98dc8d03988d6c3608d268e0133 Size: 162.3 KB (162304 bytes) Detections: 16 Type: Executable File Path: %APPDATA%\MSA Group: Malware file Last Updated: December 7, 2010
5.	e.exe	1366649f38884a64e44c80065debe440	5
Name: e.exe MD5: 1366649f38884a64e44c80065debe440 Size: 142.33 KB (142336 bytes) Detections: 5 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: December 7, 2010
6.	o.dat	cd4352a8d31a2b0e07e6ce451e523de6	4
Name: o.dat MD5: cd4352a8d31a2b0e07e6ce451e523de6 Size: 151.04 KB (151040 bytes) Detections: 4 Type: Data file Path: %PROGRAMFILES%\Mozilla Firefox Group: Malware file Last Updated: December 8, 2010
7.	o.dat	f5ce575dee661c7d8d648ddfce2aaaab	4
Name: o.dat MD5: f5ce575dee661c7d8d648ddfce2aaaab Size: 154.62 KB (154624 bytes) Detections: 4 Type: Data file Path: %USERPROFILE%\Desktop Group: Malware file Last Updated: December 7, 2010
8.	exe.exe	fe065252f32b02e2d02b5e0ff78de470	3
Name: exe.exe MD5: fe065252f32b02e2d02b5e0ff78de470 Size: 147.45 KB (147456 bytes) Detections: 3 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: December 7, 2010
9.	baka7.exe	23e80ffd5f952c35f7687a0d544df835	3
Name: baka7.exe MD5: 23e80ffd5f952c35f7687a0d544df835 Size: 142.33 KB (142336 bytes) Detections: 3 Type: Executable File Path: %APPDATA%\MSA Group: Malware file Last Updated: December 7, 2010
10.	bbaka10.exe	3b85b7c46526fef8fdfc07603c89b07e	3
Name: bbaka10.exe MD5: 3b85b7c46526fef8fdfc07603c89b07e Size: 166.91 KB (166912 bytes) Detections: 3 Type: Executable File Path: %APPDATA%\MSA Group: Malware file Last Updated: December 14, 2010
11.	14.tmp	42f99097bb42ebb715507754899bb03e	2
Name: 14.tmp MD5: 42f99097bb42ebb715507754899bb03e Size: 141.82 KB (141824 bytes) Detections: 2 Type: Temporary File Path: %TEMP% Group: Malware file Last Updated: December 8, 2010
12.	qgDs.exe	7944ab1dec13dd9c2dce8e321f3e387c	1
Name: qgDs.exe MD5: 7944ab1dec13dd9c2dce8e321f3e387c Size: 146.43 KB (146432 bytes) Detections: 1 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: December 8, 2010
13.	360660,016536713.exe	192c323e0006e5811b5a7cb424f9a4c0	1
Name: 360660,016536713.exe MD5: 192c323e0006e5811b5a7cb424f9a4c0 Size: 139.77 KB (139776 bytes) Detections: 1 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: December 7, 2010
14.	vIQm.exe	a71863cea7fccaa23fca6d323681b4cb	1
Name: vIQm.exe MD5: a71863cea7fccaa23fca6d323681b4cb Size: 153.6 KB (153600 bytes) Detections: 1 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: December 8, 2010
15.	rOgV.exe	2cb909faaf86066121b66d106a7674c9	1
Name: rOgV.exe MD5: 2cb909faaf86066121b66d106a7674c9 Size: 153.08 KB (153088 bytes) Detections: 1 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: December 8, 2010
16.	Kias.exe	e3f6a36a69f678b12cde3c3d05b3034b	1
Name: Kias.exe MD5: e3f6a36a69f678b12cde3c3d05b3034b Size: 151.04 KB (151040 bytes) Detections: 1 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: December 8, 2010
17.	msvcr71microsoft.exe	d992ff836e00200b597b8d8d4b78265f	1
Name: msvcr71microsoft.exe MD5: d992ff836e00200b597b8d8d4b78265f Size: 151.04 KB (151040 bytes) Detections: 1 Type: Executable File Path: %COMMONPROGRAMFILES%\microsoft shared\msdesigners7 Group: Malware file Last Updated: December 8, 2010
18.	accessmicrosoft.exe	a242d533df0ce40baac96f655e1c1751	1
Name: accessmicrosoft.exe MD5: a242d533df0ce40baac96f655e1c1751 Size: 150.52 KB (150528 bytes) Detections: 1 Type: Executable File Path: %COMMONPROGRAMFILES%\system\ado Group: Malware file Last Updated: December 8, 2010
19.	quicktimeresourcesquicktimeresources .exe	576927fb443ea85f1a67d7d5a467f035	1
Name: quicktimeresourcesquicktimeresources .exe MD5: 576927fb443ea85f1a67d7d5a467f035 Size: 153.08 KB (153088 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES%\quicktime\qtsystem\quicktimevrauthoring.resources\fr.lproj Group: Malware file Last Updated: December 8, 2010
20.	B9.tmp	d7839861b6f5b6ecb02fa0f160fb1fac	1
Name: B9.tmp MD5: d7839861b6f5b6ecb02fa0f160fb1fac Size: 166.91 KB (166912 bytes) Detections: 1 Type: Temporary File Path: %TEMP% Group: Malware file Last Updated: December 7, 2010
21.	bn2.tmp	8c59f0379ef8eb90d4dfe54b1ef3f6d6	1
Name: bn2.tmp MD5: 8c59f0379ef8eb90d4dfe54b1ef3f6d6 Size: 146.94 KB (146944 bytes) Detections: 1 Type: Temporary File Path: %WINDIR%\temp Group: Malware file Last Updated: December 7, 2010
22.	pdfupd.exe	6fbeb65da9a4007b334b33d0ec6e2a60	1
Name: pdfupd.exe MD5: 6fbeb65da9a4007b334b33d0ec6e2a60 Size: 170.49 KB (170496 bytes) Detections: 1 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: December 7, 2010
23.	transferarchiverlibrary.exe	9645911cf682943f8a72bc012315078c	1
Name: transferarchiverlibrary.exe MD5: 9645911cf682943f8a72bc012315078c Size: 166.4 KB (166400 bytes) Detections: 1 Type: Executable File Path: %PROGRAMFILES%\wave systems corp\common\he Group: Malware file Last Updated: December 7, 2010
24.	~TM31.tmp	5be4b708a68687cb5490fe2caea49c82	1
Name: ~TM31.tmp MD5: 5be4b708a68687cb5490fe2caea49c82 Size: 167.42 KB (167424 bytes) Detections: 1 Type: Temporary File Path: %WINDIR%\Temp Group: Malware file Last Updated: December 7, 2010
25.	0.4963503726991707.exe	49baecd50f9bdcc36ea350956922415f	1
Name: 0.4963503726991707.exe MD5: 49baecd50f9bdcc36ea350956922415f Size: 166.4 KB (166400 bytes) Detections: 1 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: May 3, 2011
26.	googlefrissts.exe	6e18acf50078c7606777a5383c526d27	1
Name: googlefrissts.exe MD5: 6e18acf50078c7606777a5383c526d27 Size: 166.4 KB (166400 bytes) Detections: 1 Type: Executable File Path: %LOCALAPPDATA%\google\update\1.2.183.29 Group: Malware file Last Updated: December 7, 2010