COMMANDPROMPT.SYSM – Trojan Downloader

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

COMMANDPROMPT.SYSM – Trojan Downloader removal

FileMD5Virus Alias
COMMANDPROMPT.SYSM d3fba54d7d5419d06a58542c570db754 Trojan Downloader
COMMANDPROMPT.SYSM d3fba54d7d5419d06a58542c570db754 Trojan SuspiciousFile
COMMANDPROMPT.SYSM d3fba54d7d5419d06a58542c570db754 Trojan Generic
COMMANDPROMPT.SYSM d3fba54d7d5419d06a58542c570db754 Trojan Hllw
COMMANDPROMPT.SYSM d3fba54d7d5419d06a58542c570db754 Trojan Agent

COMMANDPROMPT.SYSM size: 78335 bytes
COMMANDPROMPT.SYSM hash: D3FBA54D7D5419D06A58542C570DB754

Created files:

C:\windows\system32\CommandPrompt.Sysm
C:\windows\system32\Desktop.sysm
C:\windows\system32\Windows 3D.scr
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\csrss.exe
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\csrss.exe?
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\lsass.exe
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\lsass.exe?
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\msvbvm60.dll
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\Paraysutki_VM_Community
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\services.exe
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\smss.exe
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\smss.exe?
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\winlogon.exe
%AppData%\Microsoft\2068
%AppData%\Microsoft\dsnw.exe

Detected by UnHackMe:

COMMANDPROMPT.SYSM
Default location: %SYSDIR%\COMMANDPROMPT.SYSM

Dropper information:
MD5: 0cca30c5e983278fac06583ec039cdf3
File size: 130050 bytes

Leave a Reply