Backdoor Koutodoor – cgfznnq.dll – 1838df28fb69038ee1024bbb73cb50c3

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

Backdoor Koutodoor
Also known as: Trojan Eldorado, Trojan Small
SHA256: c69099497c93ecb6660a8ee238245004a194603a3ca176049369238d53a01de9
SHA1: ce93c25b8df7eb9575f7fc32018f14eb6b877cda
MD5: 1838df28fb69038ee1024bbb73cb50c3
File size: 282688 bytes

Created files:

%SysDir%\cgfznnq.dll – Backdoor Koutodoor
%SysDir%\drivers\nqhf.sys – Backdoor Koutodoor
%SysDir%\yevnyo.bat – Backdoor Koutodoor
%Temp%\fpmzicw.bat – Backdoor Koutodoor
%Temp%\qewfbsja.bat – Backdoor Koutodoor
%Temp%\vaeklw.exe – Backdoor Koutodoor

Backdoor Koutodoor created autostart registry keys:

HKLM\System\CurrentControlSet\Services\nqhf\Type: 01000000
HKLM\System\CurrentControlSet\Services\nqhf\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\nqhf\DisplayName: nqhf
HKLM\System\CurrentControlSet\Services\nqhf\ImagePath: 730079007300740065006D00330032005C0064007200690076006500720073005C006E007100680066002E007300790073000000

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images