MSMM.EXE – Trojan Agent

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

MSMM.EXE – Trojan Agent removal

FileMD5Virus Alias
MSMM.EXE f789de82e3e053e5f360e7156b25dc31 Trojan Agent
MSMM.EXE f789de82e3e053e5f360e7156b25dc31 Trojan SuspiciousFile
MSMM.EXE f789de82e3e053e5f360e7156b25dc31 Trojan Runner
MSMM.EXE f789de82e3e053e5f360e7156b25dc31 Trojan Eldorado
MSMM.EXE f789de82e3e053e5f360e7156b25dc31 Trojan Downloader
MSMM.EXE f789de82e3e053e5f360e7156b25dc31 Worm Autorun

MSMM.EXE size: 1171456 bytes
MSMM.EXE hash: F789DE82E3E053E5F360E7156B25DC31

Created files:

%WinDir%\INETINFO.exe
%SysDir%\config\systemprofile\Wins7\msmm.exe
%SysDir%\inf\svchost.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\eventchk\Type: 10000000
HKLM\System\CurrentControlSet\Services\eventchk\Start: 02000000
HKLM\System\CurrentControlSet\Services\eventchk\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\eventchk\DisplayName: Windows Event Check
HKLM\System\CurrentControlSet\Services\eventchk\ImagePath: %WinDir%\System32\inf\svchost.exe

Detected by UnHackMe:

MSMM.EXE
Default location: %SYSDIR%\CONFIG\SYSTEMPROFILE\WINS7\MSMM.EXE

Dropper information:
MD5: 0b0a3574f2a216119bd587ff5379a53c
File size: 1171456 bytes

Leave a Reply