XUCHANGAD.EXE – Trojan SuspiciousFile

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

XUCHANGAD.EXE – Trojan SuspiciousFile removal

FileMD5Virus Alias
XUCHANGAD.EXE acd38c41508bfa86279ff940ccfcd893 Trojan SuspiciousFile
XUCHANGAD.EXE acd38c41508bfa86279ff940ccfcd893 Trojan Xema

XUCHANGAD.EXE size: 937409 bytes
XUCHANGAD.EXE hash: ACD38C41508BFA86279FF940CCFCD893

Created files:

%SysDir%\drivers\Xuchangad.sys
%TEMP%\njGceADAbH.exe
%TEMP%\SYdnPYiFT.exe
%TEMP%\Xuchangad.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Xuchangad\Type: 01000000
HKLM\System\CurrentControlSet\Services\Xuchangad\Start: 02000000
HKLM\System\CurrentControlSet\Services\Xuchangad\DisplayName: Xuchangad
HKLM\System\CurrentControlSet\Services\Xuchangad\ImagePath: %WinDir%\System32\drivers\Xuchangad.sys

Detected by UnHackMe:

XUCHANGAD.EXE
Default location: %TEMP%\XUCHANGAD.EXE

Dropper information:
MD5: 24a64a6920699696861189affda3f5c2
File size: 556328 bytes

Leave a Reply