OverSpy

OverSpy is a keylogger which logs keystrokes of the user's PC invisibly in the background. It's features: capture all online conversations, websites visited, all emails sent and received, all keystrokes typed, take screenshots, all computer operations. It includes high risk threats that are typically installed without user interaction through security exploits, and can severely compromise system security. Such threats may open illicit network connections, use polymorphic tactics to self-mutate, disable security software, modify system files, and install additional malware. These threats may also collect and transmit personally identifiable information (PII) without consent and severely degrade the performance and stability of computer.0

General information:

Malware Name: OverSpy
Malware Type: Key Logger
Company Name: Virtuoza, Inc
Company URL: http://www.virtuoza.com/
Threat Level: High Risk
Operating System: WIN XP
Installation Type: Installed through EXE
Operation: Time of After Installation.

Company Description:

Spyware Description:

OverSpy is a keylogger which logs keystrokes of the user's PC invisibly in the background. It's features: capture all online conversations, websites visited, all emails sent and received, all keystrokes typed, take screenshots, all computer operations. It includes high risk threats that are typically installed without user interaction through security exploits, and can severely compromise system security. Such threats may open illicit network connections, use polymorphic tactics to self-mutate, disable security software, modify system files, and install additional malware. These threats may also collect and transmit personally identifiable information (PII) without consent and severely degrade the performance and stability of computer.0

Characteristics/Symptoms:

    -> Monitor and capture data from computers -> Run in stealth mode -> Intercepts keystrokes from the keyboard and records them in a log -> Starts with the operating system0

Additional information might be found here:

google Search at Google for OverSpy
bing Search at Bing for OverSpy
yahoo Search at Yahoo for OverSpy

Processes Running:

OverSpy.exe

File information Created after Installation:

File Location Size (Bytes) Type
C:\Documents and Settings\All Users\Start Menu\Programs\OverSpy\OverSpy on the Web.lnk 453 Shortcut
C:\Documents and Settings\All Users\Start Menu\Programs\OverSpy\OverSpy.lnk 532 Shortcut
C:\Documents and Settings\All Users\Start Menu\Programs\OverSpy\Uninstall OverSpy.lnk 532 Shortcut

Folder information Created after Installation:

Folder Location
C:\Program Files\OverSpy

Registry information Created after Installation:

Main Registry Key Sub Registry Key Key Value Name
HKEY_LOCAL_MACHINE \SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OverSpy_is1 URLInfoAbout
HKEY_LOCAL_MACHINE \SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OverSpy_is1 URLUpdateInfo
HKEY_LOCAL_MACHINE \SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OverSpy_is1 UninstallString