File Investigation Report
CHUZZLE.EXE
Malicious SoftwareIt is possible that your PC could be infected. The file name CHUZZLE.EXE is used by both safe and unsafe programs.
You should urgently check your PC to make sure it is not infected. The free version of Prevx will scan your PC in less than two minutes and check for millions of spyware and malware infections including CHUZZLE.EXE. Don't put your confidential data, or your identity at risk, check your PC now with Prevx.
Associated Malware Groups
The unsafe files using this name are associated with the malware group:
- Malicious Software
File Behavior
CHUZZLE.EXE has been seen to perform the following behavior:
- Executes a Process
- Writes to another Process's Virtual Memory (Process Hijacking)
- Registers a Dynamic Link Library File
- The Process is packed and/or encrypted using a software packing process
- This Process uses Anti Dissasembly Tricks to avoid analysis by security products
- The Process is polymorphic and can change its structure
- This Process Contains User Mode Rootkit Functionality and can hide itself from the running process list
- Can communicate with other computer systems using HTTP protocols
- The process hooks code into all running processes which could allow it to take control of the system or record keyboard input, mouse activity and screen contents
- Found on infected systems and resists interrogation by security products
- Uses low level functions to hide itself from the user and from system/security processes
CHUZZLE.EXE has been the subject of the following behavior:
- Executed as a Process
- Created as a process on disk
- Deleted as a process from disk
- Has code inserted into its Virtual Memory space by other programs
- Registered as a Dynamic Link Library File
- Executed by Internet Explorer
Country Of Origin
The filename CHUZZLE.EXE was first seen on Jun 5 2007 in the following geographical regions of the Prevx community:
- The United Kingdom on Jun 5 2007
- Spain on Jun 18 2007
- Italy on Dec 15 2007
- Sweden on Mar 14 2008
- Palestinian Territory on Mar 14 2008
- Europe on Mar 17 2008
- Poland on Mar 17 2008
- The United States on Mar 31 2008
- Vietnam on Mar 21 2010
Filesizes
The following file size has been seen:
- 1,126,400 bytes
- 274,432 bytes
- 1,249,280 bytes
- 1,212,416 bytes
- 249,856 bytes
- 1,107,710 bytes
- 1,105,920 bytes
File Type
The filename CHUZZLE.EXE refers to many versions of an executable program.
File Activity
One or more files with the name CHUZZLE.EXE creates, deletes, copies or moves the following files and folders:
- Creates c:\docume~1\user\locals~1\temp\444f_appcompat.txt
- Creates c:\docume~1\user\locals~1\temp\150F9.dmp
- Opens/modifes c:\autoexec.bat
PCMag.com Editors' Choice Award Logo is a trademark of Ziff Davis Publishing Holdings Inc. Used under license.