VMWARE-VMX.EXE – Backdoor Hupigon

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

VMWARE-VMX.EXE – Backdoor Hupigon removal

FileMD5Virus Alias
VMWARE-VMX.EXE fc50f84566a28bb2c043498d8303682f Backdoor Hupigon
VMWARE-VMX.EXE fc50f84566a28bb2c043498d8303682f Trojan SuspiciousFile
VMWARE-VMX.EXE fc50f84566a28bb2c043498d8303682f Trojan Generic
VMWARE-VMX.EXE fc50f84566a28bb2c043498d8303682f Trojan Eldorado
VMWARE-VMX.EXE fc50f84566a28bb2c043498d8303682f Trojan Downloader
VMWARE-VMX.EXE fc50f84566a28bb2c043498d8303682f Trojan Darkshell

VMWARE-VMX.EXE size: 488396 bytes
VMWARE-VMX.EXE hash: FC50F84566A28BB2C043498D8303682F

Created files:

%SysDir%\vmware-vmx.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Windows Test My Test 1.0\Type: 10000000
HKLM\System\CurrentControlSet\Services\Windows Test My Test 1.0\Start: 02000000
HKLM\System\CurrentControlSet\Services\Windows Test My Test 1.0\DisplayName: Windows Test My Test Server 1.0
HKLM\System\CurrentControlSet\Services\Windows Test My Test 1.0\ImagePath: %WinDir%\System32\vmware-vmx.exe
HKLM\System\CurrentControlSet\Services\Windows Test My Test 1.0\Description: This is Windows Test My Test Server 1.0

Detected by UnHackMe:

VMWARE-VMX.EXE
Default location: %SYSDIR%\VMWARE-VMX.EXE

Dropper information:
MD5: fc50f84566a28bb2c043498d8303682f
File size: 488396 bytes

Leave a Reply