TOWYWEHYGSOH.EXE – Trojan Wigon

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

TOWYWEHYGSOH.EXE – Trojan Wigon removal

FileMD5Virus Alias
TOWYWEHYGSOH.EXE 98c50377fb9ba038316fbfa29580f64a Trojan Wigon
TOWYWEHYGSOH.EXE 98c50377fb9ba038316fbfa29580f64a Trojan SuspiciousFile
TOWYWEHYGSOH.EXE 98c50377fb9ba038316fbfa29580f64a Trojan Downloader
TOWYWEHYGSOH.EXE 98c50377fb9ba038316fbfa29580f64a Trojan Agent
TOWYWEHYGSOH.EXE 98c50377fb9ba038316fbfa29580f64a Trojan ZBot
TOWYWEHYGSOH.EXE 98c50377fb9ba038316fbfa29580f64a Trojan Kryptik

TOWYWEHYGSOH.EXE size: 129536 bytes
TOWYWEHYGSOH.EXE hash: 98C50377FB9BA038316FBFA29580F64A

Created files:

%SysDir%\config\systemprofile\towywehygsoh.exe
%AppData%\Microsoft\Crypto\RSA\S-1-5-21-515967899-854245398-1708537768-1003\f58155b4b1d5a524ca0261c3ee99fb50_78de4566-a5cc-4192-bf8d-014e0d2bd235

Autostart registry keys:

HKCU\Software\Microsoft\Windows\CurrentVersion\run\towywehygsoh: %WinDir%\System32\config\Systemprofile\towywehygsoh.exe

Detected by UnHackMe:

TOWYWEHYGSOH.EXE
Default location: %SYSDIR%\CONFIG\SYSTEMPROFILE\TOWYWEHYGSOH.EXE

Dropper information:
MD5: 98c50377fb9ba038316fbfa29580f64a
File size: 129536 bytes

Leave a Reply