Backdoor IRCBot – sIRC4.exe – a2a5fe1e19e8cc123c05c6a49e933cbc

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Backdoor IRCBot
Also known as: Trojan Delphi, Trojan Delf
SHA256: fc09bab1a856aa4ec5cab11832e5ebe147747f058f43d38076551765dc20c23b
SHA1: 4ac1c3c97e56b2480698bc39263801ef637206ef
MD5: a2a5fe1e19e8cc123c05c6a49e933cbc
File size: 377397 bytes

Created files:

%SysDir%\sIRC4.exe – Backdoor IRCBot
%SysDir%\xdccPrograms\Network Setup Wizard.exe – Backdoor IRCBot
%SysDir%\xdccPrograms\Opera_1161_int_Setup.exe – Backdoor IRCBot
%SysDir%\xdccPrograms\Wireless Network Setup Wizard.exe – Backdoor IRCBot

Backdoor IRCBot created autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\shell: Explorer.exe sIRC4.exe

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images