QQNEWS.EXE – Trojan Scar

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

QQNEWS.EXE – Trojan Scar removal

FileMD5Virus Alias
QQNEWS.EXE 23c80e5e13afe4a77cc0e888b3e92a87 Trojan Scar
QQNEWS.EXE 23c80e5e13afe4a77cc0e888b3e92a87 Trojan SuspiciousFile
QQNEWS.EXE 23c80e5e13afe4a77cc0e888b3e92a87 Trojan Xema
QQNEWS.EXE 23c80e5e13afe4a77cc0e888b3e92a87 Trojan Downloader
QQNEWS.EXE 23c80e5e13afe4a77cc0e888b3e92a87 Trojan Comroki

QQNEWS.EXE size: 60928 bytes
QQNEWS.EXE hash: 23C80E5E13AFE4A77CC0E888B3E92A87

Created files:

%Program Files%\QQNews\QQNews.exe
%Temporary Internet Files%\Content.IE5\1HVEIEYW\background_gradient[1]
%Temporary Internet Files%\Content.IE5\1HVEIEYW\bullet[1]
%Temporary Internet Files%\Content.IE5\1HVEIEYW\dnserrordiagoff_webOC[1]
%Temporary Internet Files%\Content.IE5\1HVEIEYW\ErrorPageTemplate[1]
%Temporary Internet Files%\Content.IE5\8OZFYSFM\bullet[1]
%Temporary Internet Files%\Content.IE5\8OZFYSFM\dnserrordiagoff_webOC[1]
%Temporary Internet Files%\Content.IE5\8OZFYSFM\errorPageStrings[1]
%Temporary Internet Files%\Content.IE5\8OZFYSFM\info_48[1]
%Temporary Internet Files%\Content.IE5\9ZXDM8KN\down[1]
%Temporary Internet Files%\Content.IE5\9ZXDM8KN\errorPageStrings[1]
%Temporary Internet Files%\Content.IE5\9ZXDM8KN\httpErrorPagesScripts[1]
%Temporary Internet Files%\Content.IE5\9ZXDM8KN\info_48[1]
%Temporary Internet Files%\Content.IE5\M3TXLF4P\background_gradient[1]
%Temporary Internet Files%\Content.IE5\M3TXLF4P\down[1]
%Temporary Internet Files%\Content.IE5\M3TXLF4P\ErrorPageTemplate[1]
%Temporary Internet Files%\Content.IE5\M3TXLF4P\httpErrorPagesScripts[1]

Autostart registry keys:

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\QQNews: “%Program Files%\QQNews\QQNews.exe” /r BDC:\Program F

Detected by UnHackMe:

QQNEWS.EXE
Default location: %PROGRAM FILES%\QQNEWS\QQNEWS.EXE

Dropper information:
MD5: 23c80e5e13afe4a77cc0e888b3e92a87
File size: 60928 bytes

Leave a Reply