Ezurl
Ezurl is a keylogger that logs URLs and sends them back to a designated server. It also monitors and captures information.
General information:
| Malware Name: |
Ezurl |
| Malware Type: |
Keylogger |
| Company Name: |
Ezurl.co |
| Company URL: |
|
| Threat Level: |
High Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation |
Company Description:
Ezurl.co provides you the software Ezurl that is designed to use a webcam, microphone, screen capture, or other approaches to monitor and capture information.
Spyware Description:
Ezurl is a keylogger that logs URLs and sends them back to a designated server. It also monitors and captures information.
Characteristics/Symptoms:
-> It is a spyware program that logs URLs. -> Also it sends them back to a designated server. -> It monitors and captures information also.
Additional information might be found here:
Processes Running:
easyurl.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Program Files\ezurl\easyup.exe |
28672 |
Application |
| C:\Program Files\ezurl\version.dat |
1743 |
DAT File |
| C:\Program Files\ezurl\ȏæ¹æ¹ý.txt |
1529 |
Text Document |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\ezurl\updat |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_CLASSES_ROOT |
\ecbs.Ecbso.1 |
|
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Classes\CLSID\{031AE275-656A-407D-B6E0-6D08E78DE258} |
|
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Classes\CLSID\{031AE275-656A-407D-B6E0-6D08E78DE258}\InprocServer32 |
ThreadingModel |
