CMSTP.EXE – Trojan Small

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

CMSTP.EXE – Trojan Small removal

FileMD5Virus Alias
CMSTP.EXE 01a4a1f8b34c38bdbb3bed848ad5bf57 Trojan Small
CMSTP.EXE 01a4a1f8b34c38bdbb3bed848ad5bf57 Suspicious File
CMSTP.EXE 01a4a1f8b34c38bdbb3bed848ad5bf57 Trojan Artemis
CMSTP.EXE 01a4a1f8b34c38bdbb3bed848ad5bf57 Trojan Generic
CMSTP.EXE 01a4a1f8b34c38bdbb3bed848ad5bf57 Trojan Eldorado
CMSTP.EXE 01a4a1f8b34c38bdbb3bed848ad5bf57 Trojan Downloader

CMSTP.EXE size: 465408 bytes
CMSTP.EXE hash: 01A4A1F8B34C38BDBB3BED848AD5BF57

Created files:

%WinDir%\System32\config\systemprofile\Local Settings\Application Data\cmstp.exe
%WinDir%\System32\config\systemprofile\Local Settings\Application Data\Microsoft\mqtgsvc.exe
%WinDir%\System32\drivers\logman.exe
%TEMP%\Twain002.Mtx
%AllUsersProfile%\mstinit.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\Logman: %WinDir%\System32\drivers\logman.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Microsoft Connection Manager: %Local AppData%\cmstp.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\MessageService: %Local AppData%\Microsoft\mqtgsvc.exe

Detected by UnHackMe:

CMSTP.EXE
Default location: %LOCAL APPDATA%\CMSTP.EXE

Dropper information:
MD5: 01a4a1f8b34c38bdbb3bed848ad5bf57
File size: 465408 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images