Suspicious File

I think the file in attachment contains a trojan, but it is not recognized by Bitdefender Antivirus Plus.


After executing, Bitdefender firewall gives a message about the file test.exe in the system32 directory wanting to connect to the internet. A few minutes later, this same file wants to modify a registry entry. I denied both request.


After killing the process test.exe, I could remove the file.


vBit

/applications/core/interface/file/attachment.php?id=381" data-fileid="381" rel="">Hack_Rapidshare.zip

Comments

  • Hello vbit


    In the meantime you can upload this file to http://www.virustotal.com and post the result link. You have to wait till one of the virus researchers take a look. What you can do is place that file in quarantine. To do that open BitDefender go to antivirus,quarantine and drag and drop the file in the quarantine screen.


    Thanks for the submission.


    Regards


    Niels

  • In this case, after analyses, the detection will be added. Thanks for the sample.


    Andrei

  • Detection has been added. Thank you for the sample!

  • I seem to miss something : you say that detection has been added, but Bitdefender still does not detect any virus in the original file (It's still on my harddisk).


    I've already updated to the last version. What's wrong ?

  • Hi vbit,


    Between the time a signature is "added" and the time that signature actually becomes part of an update, there might be a small difference (a few hours). So just wait, because after a few updates BD will detect the file.


    Cris.