I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free DownloadFully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
COPYA.EXE – Trojan Ransom removal
File | MD5 | Virus Alias |
---|---|---|
COPYA.EXE | 4c0a3ca159d8acd97d8b23688c888b0c | Trojan Ransom |
COPYA.EXE size: 155648 bytes
COPYA.EXE hash: 4C0A3CA159D8ACD97D8B23688C888B0C
Created files:
%TEMP%\WZSE0.TMP\embedinc\com\copya.exe
%TEMP%\WZSE0.TMP\embedinc\com\hex_dump.exe
%TEMP%\WZSE0.TMP\embedinc\com\ihex_bin.exe
%TEMP%\WZSE0.TMP\embedinc\com\leafname.exe
%TEMP%\WZSE0.TMP\embedinc\com\picprg_list.exe
%TEMP%\WZSE0.TMP\embedinc\com\pic_ctrl.exe
%TEMP%\WZSE0.TMP\embedinc\com\pic_prog.exe
%TEMP%\WZSE0.TMP\embedinc\com\pic_prog_w.exe
%TEMP%\WZSE0.TMP\embedinc\com\pic_read.exe
%TEMP%\WZSE0.TMP\embedinc\com\server.exe
%TEMP%\WZSE0.TMP\embedinc\com\sum.exe
%TEMP%\WZSE0.TMP\embedinc\com\test_env.exe
%TEMP%\WZSE0.TMP\embedinc\com\test_picprg.exe
%TEMP%\WZSE0.TMP\embedinc\com\test_usbprog.exe
%TEMP%\WZSE0.TMP\embedinc\com\treename.exe
%TEMP%\WZSE0.TMP\embedinc\doc\prog7.pdf
%TEMP%\WZSE0.TMP\embedinc\drivers\driver_selector.exe
%TEMP%\WZSE0.TMP\embedinc\drivers\x64\EmbedUSB.dll
%TEMP%\WZSE0.TMP\embedinc\drivers\x64\WdfCoinstaller01011.dll
Detected by UnHackMe:
COPYA.EXE
Default location: %TEMP%\WZSE0.TMP\EMBEDINC\COM\COPYA.EXE
Dropper information:
MD5: a7bb564e9d30a53eb90028e6613d313d
File size: 13953536 bytes