MM.EXE – Backdoor Hupigon

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

MM.EXE – Backdoor Hupigon removal

FileMD5Virus Alias
MM.EXE b0de86c947e44e81280e80a8f3395a5a Backdoor Hupigon
MM.EXE b0de86c947e44e81280e80a8f3395a5a Trojan SuspiciousFile
MM.EXE b0de86c947e44e81280e80a8f3395a5a Trojan DNAScan
MM.EXE b0de86c947e44e81280e80a8f3395a5a Trojan CI
MM.EXE b0de86c947e44e81280e80a8f3395a5a Backdoor Bifrose

MM.EXE size: 414720 bytes
MM.EXE hash: B0DE86C947E44E81280E80A8F3395A5A

Created files:

%SysDir%\SVKP.sys
%TEMP%\IXP000.TMP\mm.EXE
%TEMP%\IXP000.TMP\WARTV1~1.EXE

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\SVKP\Type: 01000000
HKLM\System\CurrentControlSet\Services\SVKP\Start: 02000000
HKLM\System\CurrentControlSet\Services\SVKP\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\SVKP\DisplayName: SVKP
HKLM\System\CurrentControlSet\Services\SVKP\ImagePath: %WinDir%\System32\SVKP.sys

Detected by UnHackMe:

MM.EXE
Default location: %TEMP%\IXP000.TMP\MM.EXE

Dropper information:
MD5: 8885561e35e6b06c887cd72f834d54b5
File size: 576000 bytes

Leave a Reply