Backdoor Koutodoor – qbs.sys – 0c27d26871fdd2d76bc2d2c0a856e1db

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

Backdoor Koutodoor
Also known as: Trojan Generic, Trojan Eldorado
SHA256: 28f3c4f2f2510a880fb77ce36998f0e710eb3b60cfb7cd656179bb21b249480a
SHA1: c282964dd799cfe9b7d323c7d9b0033e69f6adec
MD5: 0c27d26871fdd2d76bc2d2c0a856e1db
File size: 131328 bytes

Created files:

%SysDir%\drivers\qbs.sys – Backdoor Koutodoor
%SysDir%\rgmvyl.dll – Backdoor Koutodoor
%SysDir%\wjbzgj.bat – Backdoor Koutodoor

Backdoor Koutodoor created autostart registry keys:

HKLM\System\CurrentControlSet\Services\qbs\Type: 01000000
HKLM\System\CurrentControlSet\Services\qbs\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\qbs\DisplayName: qbs
HKLM\System\CurrentControlSet\Services\qbs\ImagePath: 730079007300740065006D00330032005C0064007200690076006500720073005C007100620073002E007300790073000000

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images