| Details: | Details |
| Filename: | RSIS.exe |
| Date: | 06/May/08 21:10 |
| LongDate: | Saturday, May 6, 2006, 21:10 +00:00 |
| CVE: | n/a |
| Post: | May 6, 2008 Poison Ivy EXE RSIS Commentary... |
| BitDefender: | Trojan.Generic.2039983 |
| Kaspersky: | Trojan.Win32.Agent.clsw |
| F-Secure: | Trojan.Generic.2039983 |
| Microsoft: | Backdoor:Win32/Poisonivy.E |
| NOD32: | probably a variant of Win32/Agent |
| MD5-Virustotal: | 105c80e404324938eae633934ee44ed1 |
| Sophos: | Mal/Generic-A |
| Symantec: | Backdoor.Trojan |
| OtherNames: | Trojan.Siggen.14707 (Dr.Web) |
| LastVersionVuln: | |
| CWSandbox: | |
| Wepawet: | |
| Other: | ThreatExpert
Anubis |
| Type: | exe |
| AnalysisLinks: | |
| Sender: | RSISPubllcation@NTU.EDU.SG |
| SenderIP: | |
| SenderGeo: | |
| SenderASN: | |
| SenderISP: | |
| SenderOrg: | |
| TrafficIP: | 222.35.137.193 |
| TrafficASN: | AS38356 |
| TrafficGeo: | China - Beijing |
| TrafficOrg: | CHINA RAILWAY TELECOMMUNICATIONS CENTER |
| TrafficISP: | CHINA RAILWAY TELECOMMUNICATIONS CENTER |
| Download: | Download |
