WAAEAO.EXE – Backdoor Nitol

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

WAAEAO.EXE – Backdoor Nitol removal

FileMD5Virus Alias
WAAEAO.EXE 595c68c3ceb42e4edcd29cf2a4871b5e Backdoor Nitol
WAAEAO.EXE 595c68c3ceb42e4edcd29cf2a4871b5e Trojan SuspiciousFile
WAAEAO.EXE 595c68c3ceb42e4edcd29cf2a4871b5e Trojan Generic
WAAEAO.EXE 595c68c3ceb42e4edcd29cf2a4871b5e Trojan Hllw
WAAEAO.EXE 595c68c3ceb42e4edcd29cf2a4871b5e Trojan Eldorado
WAAEAO.EXE 595c68c3ceb42e4edcd29cf2a4871b5e Backdoor RBot

WAAEAO.EXE size: 36864 bytes
WAAEAO.EXE hash: 595C68C3CEB42E4EDCD29CF2A4871B5E

Created files:

%SysDir%\waaeao.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Abcdef Hijklmno Qrs\Type: 10000000
HKLM\System\CurrentControlSet\Services\Abcdef Hijklmno Qrs\Start: 02000000
HKLM\System\CurrentControlSet\Services\Abcdef Hijklmno Qrs\DisplayName: Abcdef Hijklmno Qrstuvwx Abcd
HKLM\System\CurrentControlSet\Services\Abcdef Hijklmno Qrs\ImagePath: %WinDir%\System32\waaeao.exe
HKLM\System\CurrentControlSet\Services\Abcdef Hijklmno Qrs\Description: Abcdefgh Jklmnopqr Tuvwxya Cdefghij Lmn

Detected by UnHackMe:

WAAEAO.EXE
Default location: %SYSDIR%\WAAEAO.EXE

Dropper information:
MD5: 595c68c3ceb42e4edcd29cf2a4871b5e
File size: 36864 bytes

Leave a Reply