Backdoor IRCBot – sttemp-1568573892.bat – 3d70c4301a3ebeda6736e7e3ea369a36

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Backdoor IRCBot
Also known as: Trojan Eldorado, Trojan Generic
SHA256: b42902ba552c5063d66b7c7785c4359537ceb7cb5b79e6bc8b62f5f87ed6eae8
SHA1: 323657fee8b1e5c09dc81ef5d1dda29593886073
MD5: 3d70c4301a3ebeda6736e7e3ea369a36
File size: 97989 bytes

Created files:

C:\Windows\Temp\sttemp-1568573892.bat – Backdoor IRCBot
%AppData%\A-1568573892.exe – Backdoor IRCBot
%Startup%\A-1568573892.exe – Backdoor IRCBot

Backdoor IRCBot created autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\A-1568573892: %AppData%\A-1568573892.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\A-1568573892: %AppData%\A-1568573892.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx\A-1568573892: %AppData%\A-1568573892.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\A-1568573892: %AppData%\A-1568573892.exe

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images