Backdoor Koutodoor – bkwzwz.bat – 10289c80e688416d7c96dfb6200ff2d4

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

Backdoor Koutodoor
Also known as: Trojan Eldorado, Trojan Generic
SHA256: bcf3368d1fa09841fc15433e7ca5394405fecf6d11b20253e956f6958b3c9453
SHA1: 8ee7274bd8579ec03c5162958e82f42916086649
MD5: 10289c80e688416d7c96dfb6200ff2d4
File size: 131328 bytes

Created files:

%SysDir%\bkwzwz.bat – Backdoor Koutodoor
%SysDir%\cpjh.dll – Backdoor Koutodoor
%SysDir%\drivers\zhw.sys – Backdoor Koutodoor

Backdoor Koutodoor created autostart registry keys:

HKLM\System\CurrentControlSet\Services\zhw\Type: 01000000
HKLM\System\CurrentControlSet\Services\zhw\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\zhw\DisplayName: zhw
HKLM\System\CurrentControlSet\Services\zhw\ImagePath: 730079007300740065006D00330032005C0064007200690076006500720073005C007A00680077002E007300790073000000

Leave a Reply