See: https://www.virustotal.com/nl/url/150037eff9c4238681b7076f7eb0c49281bda52a153acb364ce36dcde2d0ec59/analysis/1383688420/
and accordingly: https://www.virustotal.com/nl/file/ca8697e9f5cbd0ac9ead6ddf7e213391578e1503c57498a66d2888beb8f86960/analysis/1383678619/
see: http://urlquery.net/report.php?id=7443970
See: http://anubis.iseclab.org/?action=result&task_id=1b41c278911612904d9edfdf46fc2b7f5&format=html
Trojan Srizbi like PROXYSTUBCLSID32 drag & drop file - http://f.virscan.org/ffdy.exe.html - ffdy.exe has relation to Banload Trojan?
Mutex used to see if a particular process is running…

polonus

Also compare: http://app.webinspector.com/public/reports/18127749
See: https://www.virustotal.com/nl/file/4a64bc2f2660374521f0c8d85f5fe1548142b40c0ba38dfe7b020842fb6aec57/analysis/1383129429/
http://greatis.com/cleanvirus/worm/worm-whiteice.htm detection credits go to UnhackMe/Nightwatcher

polonus