Trojan Delf – nm.exe – 00e7247e443a998789db380e9c61aaa6

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Delf
Also known as: Trojan Agent
SHA256: 162de213ddc0ac873a3a2457551e209a5d47f579356da2c42772f2f22708283d
SHA1: 9b592534af4318f7d78cdcbb0b451f12a5d9641b
MD5: 00e7247e443a998789db380e9c61aaa6
File size: 90624 bytes

Created files:

%SysDir%\nm.exe – Trojan Delf
%SysDir%\syslggo.exe – Trojan Delf
%SysDir%\sysnet.exe – Trojan Delf
%SysDir%\updatee.exe – Trojan Delf
%SysDir%\WinSocks.dll – Trojan Delf
%WinDir%\systermt.exe – Trojan Delf

Trojan Delf created autostart registry keys:

HKLM\Software\Classes\txtfile\shell\open\command : %WinDir%\System32\sysnet.exe %1
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Intrenat: %WinDir%\systermt.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices\Intrenat: %WinDir%\systermt.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices\windows update: %WinDir%\System32\updatee.exe
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\shell: Explorer.exe %WinDir%\System32\syslggo.exe

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images