Backdoor Hupigon – windll.exe – 1d369cf4513824c0f3d75e0cb0894489

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

Backdoor Hupigon
Also known as: Trojan Agent, Trojan Delf
SHA256: 05779abdc07ff72ac667e01936ea3b8b8de9e269f71bccc7d82a76b4cdbb76c8
SHA1: 376088854676192789bc7b4a8c76a112b23a73c3
MD5: 1d369cf4513824c0f3d75e0cb0894489
File size: 256000 bytes

Created files:

%SysDir%\config\systemprofile\Application Data\System Files\windll.exe – Backdoor Hupigon

Backdoor Hupigon created autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\UserInit: %WinDir%\System32\userinit.exe,%WinDir%\System32\config\Systemprofile\Application Data\System Files\windll.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Facebook Hack: %WinDir%\System32\config\Systemprofile\Application Data\System Files\windll.exe

Leave a Reply