Backdoor Farfli – service.exe – 7a8d2c31027b60d57761732f2c768bf6

August 29, 2012

Alex NightWatcher

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Backdoor Farfli
Also known as: Trojan Crypt, Trojan Graftor
SHA256: 78633587a5cbd753811a6bd30a9ead9419867346229515f5de82e85a8797c0cd
SHA1: b3b9f6e89c7b72412484ccca91417caaae7e240f
MD5: 7a8d2c31027b60d57761732f2c768bf6
File size: 167952 bytes

Created files:

%Program Files%\service.exe – Backdoor Farfli
C:\windows\lass.exe – Backdoor Farfli

Backdoor Farfli created autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run : 7A8D2C31027B60D57761732F2C768BF6_7A8D2C31027B60D57761732F2C768BF6.EXE
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\shell: C:\windows\lass.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce\shell: %Program Files%\service.exe

Leave a Reply Cancel reply

You must be logged in to post a comment.