Backdoor Andromeda – msiexec64.exe – b39001a2c48ceee5c4e6a5e908fa698a

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Backdoor Andromeda
Also known as: Trojan Jorik, Trojan Small
SHA256: 4e3b0ee8cf9f78ee2adf275bfa02bc8e032c40ae449db31b2fdb0e39cd7586c6
SHA1: afca1f55397b15c7421542a138b1f0b0fc3a7692
MD5: b39001a2c48ceee5c4e6a5e908fa698a
File size: 50176 bytes

Created files:

%SysDir%\msiexec64.exe – Backdoor Andromeda

Backdoor Andromeda created autostart registry keys:

HKLM\System\CurrentControlSet\Services\MSIconfig\Type: 10000000
HKLM\System\CurrentControlSet\Services\MSIconfig\Start: 02000000
HKLM\System\CurrentControlSet\Services\MSIconfig\DisplayName: Windows Installer Manager
HKLM\System\CurrentControlSet\Services\MSIconfig\ImagePath: %WinDir%\System32\msiexec64.exe

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images