Backdoor Koutodoor – ruizzmn.sys – 025470de9af295716123b09999eb357a

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

Backdoor Koutodoor
Also known as: Trojan Eldorado, Trojan Agent
SHA256: dcd91a57b819de46eae814d98d2f4258abd733683bf8f77196b90a4a401a79bd
SHA1: c44477b1824b47a9d4493cb4fe0b2e82ad95da98
MD5: 025470de9af295716123b09999eb357a
File size: 151808 bytes

Created files:

%SysDir%\drivers\ruizzmn.sys – Backdoor Koutodoor
%SysDir%\ksiijrj.dll – Backdoor Koutodoor
%SysDir%\wgoukx.bat – Backdoor Koutodoor

Backdoor Koutodoor created autostart registry keys:

HKLM\System\CurrentControlSet\Services\ruizzmn\Type: 01000000
HKLM\System\CurrentControlSet\Services\ruizzmn\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\ruizzmn\DisplayName: ruizzmn
HKLM\System\CurrentControlSet\Services\ruizzmn\ImagePath: 730079007300740065006D00330032005C0064007200690076006500720073005C007200750069007A007A006D006E002E007300790073000000

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images