CELESTY.EXE – Trojan Binder

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

CELESTY.EXE – Trojan Binder removal

FileMD5Virus Alias
CELESTY.EXE c3009ee63bc661d9ea75eaeb256448ca Trojan Binder
CELESTY.EXE c3009ee63bc661d9ea75eaeb256448ca Trojan SuspiciousFile
CELESTY.EXE c3009ee63bc661d9ea75eaeb256448ca Trojan Artemis
CELESTY.EXE c3009ee63bc661d9ea75eaeb256448ca Trojan Generic
CELESTY.EXE c3009ee63bc661d9ea75eaeb256448ca Trojan Agent

CELESTY.EXE size: 2871808 bytes
CELESTY.EXE hash: C3009EE63BC661D9EA75EAEB256448CA

Created files:

%Program Files%\CELESTY.EXE
%Program Files%\NJ-CRYPT.EXE
%Program Files%\NJ-CRYPTT.VBS
%SysDir%\config\systemprofile\Start Menu\Programs\Startup\NJ-CRYPTT.VBS
%TEMP%\NJ-CRYPTT.VBS
%TEMP%\winrar.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\run\NJ-CRYPTT: “%TEMP%\NJ-CRYPTT.VBS”
HKCU\Software\Microsoft\Windows\CurrentVersion\run\NJ-CRYPTT: “%TEMP%\NJ-CRYPTT.VBS”

Detected by UnHackMe:

CELESTY.EXE
Default location: %PROGRAM FILES%\CELESTY.EXE

Dropper information:
MD5: b87479db6719be6dd1b3cab136b5011e
File size: 3146240 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images