CABALMAIN.EXE – Trojan XPACK

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

CABALMAIN.EXE – Trojan XPACK removal

FileMD5Virus Alias
CABALMAIN.EXE 06ea74d2876faf4aa0b282bc0a0f3725 Trojan XPACK

CABALMAIN.EXE size: 3795776 bytes
CABALMAIN.EXE hash: 06EA74D2876FAF4AA0B282BC0A0F3725

Created files:

%SysDir%\1033\dwintl.dll
%SysDir%\12520437.cpx
%SysDir%\12520850.cpx
%SysDir%\6to4svc.dll
%SysDir%\aaaamon.dll
%SysDir%\aaclient.dll
%SysDir%\access.cpl
%SysDir%\acctres.dll
%SysDir%\accwiz.exe
%SysDir%\acledit.dll
%SysDir%\aclui.dll
%SysDir%\activeds.dll
%SysDir%\activeds.tlb
%SysDir%\actmovie.exe
%SysDir%\actxprxy.dll
%SysDir%\admparse.dll
%SysDir%\adptif.dll
%SysDir%\adsldp.dll
%SysDir%\adsldpc.dll
%SysDir%\adsmsext.dll
%SysDir%\adsnds.dll
%SysDir%\pk.bin
%SysDir%\rinst.exe
%SysDir%\svcc.exe
%SysDir%\svcchk.dll
%SysDir%\svccwb.dll
%TEMP%\RarSFX0\cabalmain.exe
%TEMP%\RarSFX0\pk.bin
%TEMP%\RarSFX0\rinst.exe
%TEMP%\RarSFX0\svcc.exe
%TEMP%\RarSFX0\svcchk.dll
%TEMP%\RarSFX0\svccwb.dll

Detected by UnHackMe:

CABALMAIN.EXE
Default location: %TEMP%\RARSFX0\CABALMAIN.EXE

Dropper information:
MD5: 7ca7851779939abbd3e8760d38a72dcf
File size: 4031906 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images