VOZGASHYTEXE.EXE – Trojan Wigon

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

VOZGASHYTEXE.EXE – Trojan Wigon removal

FileMD5Virus Alias
VOZGASHYTEXE.EXE 0837e0db3a39bd3af7d50a45efd3ba85 Trojan Wigon
VOZGASHYTEXE.EXE 0837e0db3a39bd3af7d50a45efd3ba85 Trojan SuspiciousFile
VOZGASHYTEXE.EXE 0837e0db3a39bd3af7d50a45efd3ba85 Trojan Generic
VOZGASHYTEXE.EXE 0837e0db3a39bd3af7d50a45efd3ba85 Trojan Downloader
VOZGASHYTEXE.EXE 0837e0db3a39bd3af7d50a45efd3ba85 Trojan Agent
VOZGASHYTEXE.EXE 0837e0db3a39bd3af7d50a45efd3ba85 Trojan ZBot

VOZGASHYTEXE.EXE size: 88064 bytes
VOZGASHYTEXE.EXE hash: 0837E0DB3A39BD3AF7D50A45EFD3BA85

Created files:

%SysDir%\config\systemprofile\vozgashytexe.exe
%AppData%\Microsoft\Crypto\RSA\S-1-5-21-515967899-854245398-1708537768-1003\f58155b4b1d5a524ca0261c3ee99fb50_78de4566-a5cc-4192-bf8d-014e0d2bd235

Autostart registry keys:

HKCU\Software\Microsoft\Windows\CurrentVersion\run\vozgashytexe: %WinDir%\System32\config\Systemprofile\vozgashytexe.exe

Detected by UnHackMe:

VOZGASHYTEXE.EXE
Default location: %SYSDIR%\CONFIG\SYSTEMPROFILE\VOZGASHYTEXE.EXE

Dropper information:
MD5: 0837e0db3a39bd3af7d50a45efd3ba85
File size: 88064 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images