WINDOWS_NT.EXE – Backdoor Hupigon

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

WINDOWS_NT.EXE – Backdoor Hupigon removal

File MD5 Virus Alias
WINDOWS_NT.EXE 08a11fcec1c93733b4f6f75faa6a2f26 Backdoor Hupigon
WINDOWS_NT.EXE 08a11fcec1c93733b4f6f75faa6a2f26 Trojan ASPack
WINDOWS_NT.EXE 08a11fcec1c93733b4f6f75faa6a2f26 Trojan SuspiciousFile
WINDOWS_NT.EXE 08a11fcec1c93733b4f6f75faa6a2f26 Trojan Eldorado
WINDOWS_NT.EXE 08a11fcec1c93733b4f6f75faa6a2f26 Trojan DNAScan
WINDOWS_NT.EXE 08a11fcec1c93733b4f6f75faa6a2f26 Trojan Agent

WINDOWS_NT.EXE size: 644096 bytes
WINDOWS_NT.EXE hash: 08A11FCEC1C93733B4F6F75FAA6A2F26

Created files:

%Program Files Common%\Microsoft Shared\MSINFO\Windows_NT.exe
%SysDir%\_Windows_NT.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Windows_NT\Type: 10010000
HKLM\System\CurrentControlSet\Services\Windows_NT\Start: 02000000
HKLM\System\CurrentControlSet\Services\Windows_NT\DisplayName: Windows_NT
HKLM\System\CurrentControlSet\Services\Windows_NT\ImagePath: %Program Files Common%\Microsoft Shared\MSINFO\Windows_NT.exe

Detected by UnHackMe:

WINDOWS_NT.EXE
Default location: %PROGRAM FILES COMMON%\MICROSOFT SHARED\MSINFO\WINDOWS_NT.EXE

Dropper information:
MD5: 08a11fcec1c93733b4f6f75faa6a2f26
File size: 644096 bytes

Leave a Reply