SecurityHome.eu MonitoringTool:Win32/Logol2

Home / malware PDF

MonitoringTool:Win32/Logol2

First posted on 06 April 2013.
Source: Microsoft
Aliases :
There are no other names known for MonitoringTool:Win32/Logol2.
Explanation :

Installation

Its installation files are:

logol2.exe - detected as MonitoringTool:Win32/Logol2

logol2cfg.exe - detected as MonitoringTool:Win32/Logol2

dtv2.exe - detected as MonitoringTool:Win32/Logol2

logol2.ini - initialization file that contains program settings

Some versions of the program might also come with these files:

Exforce.dll

KexWin.DLL

AMpng.hpi

Behavior

Logs keystrokes and takes screenshots

If this program runs with the default settings, it creates these folders:

log

screen

It logs whatever keystrokes you make on your computer. The keystrokes are then saved in a file in the log folder. It also takes screenshots of whatever your desktop displays.

It also creates a file named "<computer name>.txt" in the log folder. This file contains the time at which the program started running.

Analysis by Patrik Vicol

Last update 06 April 2013

TOP

Malware :

Last 20