PWRWIN.EXE – Backdoor Bustem

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

PWRWIN.EXE – Backdoor Bustem removal

FileMD5Virus Alias
PWRWIN.EXE 2d7e4e9125cf54f1b81dfe04abf203c9 Backdoor Bustem
PWRWIN.EXE 2d7e4e9125cf54f1b81dfe04abf203c9 Trojan Generic
PWRWIN.EXE 2d7e4e9125cf54f1b81dfe04abf203c9 Trojan Downloader
PWRWIN.EXE 2d7e4e9125cf54f1b81dfe04abf203c9 Trojan Agent
PWRWIN.EXE 2d7e4e9125cf54f1b81dfe04abf203c9 Trojan AVKill
PWRWIN.EXE 2d7e4e9125cf54f1b81dfe04abf203c9 Trojan Scar

PWRWIN.EXE size: 245248 bytes
PWRWIN.EXE hash: 2D7E4E9125CF54F1B81DFE04ABF203C9

Created files:

%AppData%\pwrwin.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\atitool: %WinDir%\System32\config\Systemprofile\Application Data\pwrwin.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\atitool: %WinDir%\System32\config\Systemprofile\Application Data\pwrwin.exe

Detected by UnHackMe:

PWRWIN.EXE
Default location: %APPDATA%\PWRWIN.EXE

Dropper information:
MD5: 2d7e4e9125cf54f1b81dfe04abf203c9
File size: 245248 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images