22EF0E.SYS – Trojan Artemis

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

22EF0E.SYS – Trojan Artemis removal

FileMD5Virus Alias
22EF0E.SYS 4dd92d1bd1ccc825adb47e0c57746e94 Trojan Artemis
22EF0E.SYS 4dd92d1bd1ccc825adb47e0c57746e94 Trojan Generic
22EF0E.SYS 4dd92d1bd1ccc825adb47e0c57746e94 Trojan Downloader
22EF0E.SYS 4dd92d1bd1ccc825adb47e0c57746e94 Trojan CI

22EF0E.SYS size: 57216 bytes
22EF0E.SYS hash: 4DD92D1BD1CCC825ADB47E0C57746E94

Created files:

%SysDir%\drivers\22ef0e.sys
%Temp%\Geunqy\owor.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\22ef0e\Type: 01000000
HKLM\System\CurrentControlSet\Services\22ef0e\Start: 01000000
HKLM\System\CurrentControlSet\Services\22ef0e\DisplayName: owor.exe
HKLM\System\CurrentControlSet\Services\22ef0e\ImagePath: %WinDir%\System32\drivers\22ef0e.sys
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Owor: “%Temp%\Geunqy\owor.exe”

Detected by UnHackMe:

22EF0E.SYS
Default location: %SYSDIR%\DRIVERS\22EF0E.SYS

Dropper information:
MD5: 89cb8c2b7f13b709fc03d51382c64950
File size: 483328 bytes

Leave a Reply