LSM.EXE – Trojan Small

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

LSM.EXE – Trojan Small removal

FileMD5Virus Alias
LSM.EXE 01ea3ffcb8fe4fd04bca0422d0499071 Trojan Small
LSM.EXE 01ea3ffcb8fe4fd04bca0422d0499071 Trojan Artemis
LSM.EXE 01ea3ffcb8fe4fd04bca0422d0499071 Trojan Generic
LSM.EXE 01ea3ffcb8fe4fd04bca0422d0499071 Trojan Eldorado
LSM.EXE 01ea3ffcb8fe4fd04bca0422d0499071 Trojan Downloader
LSM.EXE 01ea3ffcb8fe4fd04bca0422d0499071 Trojan Agent

LSM.EXE size: 472064 bytes
LSM.EXE hash: 01EA3FFCB8FE4FD04BCA0422D0499071

Created files:

%WinDir%\lsm.exe
%WinDir%\System32\config\systemprofile\Local Settings\Application Data\lsm.exe
%WinDir%\System32\config\systemprofile\Local Settings\Application Data\Microsoft\mstinit.exe
%WinDir%\System32\drivers\mstsc.exe
%TEMP%\Twain002.Mtx

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\Mstsc: %WinDir%\System32\drivers\mstsc.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Task Scheduler: %WinDir%\System32\config\SYSTEM~1\LOCALS~1\APPLIC~1\MICROS~1\mstinit.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\lsm service: %Local AppData%\lsm.exe

Detected by UnHackMe:

LSM.EXE
Default location: %LOCAL APPDATA%\LSM.EXE

Dropper information:
MD5: 01ea3ffcb8fe4fd04bca0422d0499071
File size: 472064 bytes

Leave a Reply