SecurityHome.eu PUA:Win32/Komodia

Home / malware PDF

PUA:Win32/Komodia

First posted on 05 July 2016.
Source: Microsoft
Aliases :
There are no other names known for PUA:Win32/Komodia.
Explanation :
Installation

We have seen this application use the following file names:

WinParentalControl.exe

update_installer.exe

It can be digitally signed by the following vendors:

Superfish Inc.

FAST SEARCH

Cart Crunch Israel LTD

ADPEAK, INC.

Adpeak, Inc.

We have seen this application using product names such as:

acwfp64.sys

VDWFP64.sys

VisualDiscovery.exe

VDWFPInstaller.exe

CMWFP64.sys

This application communicates with domains such as:

www.best-deals-products.com

superfish.aistcdn.com

www.bbls12312.com

smg3.aistcdn.com

b36df47b3d.site.internapcdn.net

For example:

www.best-deals-products.com/ws/lenovo/verify.php?

superfish.aistcdn.com/set.php?

www.bbls12312.com/s.php?

This description was published using automated analysis.
Last update 05 July 2016

TOP

Malware :

None in database

Last 20