MSMM.EXE – Trojan Agent

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

MSMM.EXE – Trojan Agent removal

FileMD5Virus Alias
MSMM.EXE 32179679861ddf71071d83d676db3a2e Trojan Agent
MSMM.EXE 32179679861ddf71071d83d676db3a2e Trojan BadReputation
MSMM.EXE 32179679861ddf71071d83d676db3a2e Trojan SuspiciousFile
MSMM.EXE 32179679861ddf71071d83d676db3a2e Trojan Generic
MSMM.EXE 32179679861ddf71071d83d676db3a2e Trojan Runner
MSMM.EXE 32179679861ddf71071d83d676db3a2e Trojan Eldorado

MSMM.EXE size: 1040384 bytes
MSMM.EXE hash: 32179679861DDF71071D83D676DB3A2E

Created files:

%WinDir%\INETINFO.exe
%SysDir%\config\systemprofile\Wins7\msmm.exe
%SysDir%\inf\svchost.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\eventchk\Type: 10000000
HKLM\System\CurrentControlSet\Services\eventchk\Start: 02000000
HKLM\System\CurrentControlSet\Services\eventchk\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\eventchk\DisplayName: Windows Event Check
HKLM\System\CurrentControlSet\Services\eventchk\ImagePath: %WinDir%\System32\inf\svchost.exe

Detected by UnHackMe:

MSMM.EXE
Default location: %SYSDIR%\CONFIG\SYSTEMPROFILE\WINS7\MSMM.EXE

Dropper information:
MD5: 13f4779e9a14a64ded9ff585590b9856
File size: 1040384 bytes

Leave a Reply