ZETUF.DLL – Backdoor Hupigon

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

ZETUF.DLL – Backdoor Hupigon removal

File MD5 Virus Alias
ZETUF.DLL 18942ad7d98897c999c7197f7421ae0a Backdoor Hupigon
ZETUF.DLL 18942ad7d98897c999c7197f7421ae0a Trojan Generic
ZETUF.DLL 18942ad7d98897c999c7197f7421ae0a Trojan Eldorado
ZETUF.DLL 18942ad7d98897c999c7197f7421ae0a Backdoor Pigeon
ZETUF.DLL 18942ad7d98897c999c7197f7421ae0a Trojan Agent
ZETUF.DLL 18942ad7d98897c999c7197f7421ae0a Trojan Delf

ZETUF.DLL size: 872739 bytes
ZETUF.DLL hash: 18942AD7D98897C999C7197F7421AE0A

Created files:

%Program Files%\Xsdaq\Bxoe\Zetuf.dll
%Program Files%\Xsdaq\Ilkf.exe
%Program Files%\Xsdaq\Khuar.exe
%TEMP%\g8165\Hidden.Island.v1.01-TE.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\OALX\Start: 02000000
HKLM\System\CurrentControlSet\Services\OALX\Type: 10000000
HKLM\System\CurrentControlSet\Services\OALX\Description: Data Online Transaction Processing Module
HKLM\System\CurrentControlSet\Services\OALX\DisplayName: Data Online Transaction Processing Module
HKLM\System\CurrentControlSet\Services\OALX\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\OALX\Group: TDI
HKLM\System\CurrentControlSet\Services\OALX\ObjectName: LocalSystem
HKLM\System\CurrentControlSet\Services\OALX\ImagePath: %Program Files%\Xsdaq\Khuar.exe

Detected by UnHackMe:

ZETUF.DLL
Default location: %PROGRAM FILES%\XSDAQ\BXOE\ZETUF.DLL

Dropper information:
MD5: e87597911f77325a4e454f9ccf09a280
File size: 17000314 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images