Content
Tool-Jailbreak
- Type
- Program
- SubType
- Tool
- Discovery Date
- 07/03/2008
- Length
- Minimum DAT
- 5332 (07/04/2008)
- Updated DAT
- 5333 (07/07/2008)
- Minimum Engine
- 5.1.00
- Description Added
- 07/03/2008
- Description Modified
- 07/03/2008 7:11 PM (PT)
Tab Navigation
Characteristics
This application has been observed along with the installation of CoreFlood.dr and CoreFlood.dll where a file named sstore2K.exe is observed to have been downloaded from mcupdate.net.
sstore2K.exe is an application used to export certificates from the windows certificate store (assuming administrator privileges) . It marks all the certificates as exportable and can store them in a file which is later uploaded to its server. This application also attempts to acquire the private key for every certificate, which could possibly be used for impersonation.
Symptoms
Method of Infection
Variants
Variants
N/A
All Information
Overview -
Characteristics
Characteristics -
This application has been observed along with the installation of CoreFlood.dr and CoreFlood.dll where a file named sstore2K.exe is observed to have been downloaded from mcupdate.net.
sstore2K.exe is an application used to export certificates from the windows certificate store (assuming administrator privileges) . It marks all the certificates as exportable and can store them in a file which is later uploaded to its server. This application also attempts to acquire the private key for every certificate, which could possibly be used for impersonation.
Symptoms
Symptoms -
Method of Infection
Method of Infection -
Removal -
Removal -
Instructions on Enabling/Disabling Detection and Removal of Potentially Unwanted Programs
Variants
Variants -
N/A
