Backdoor Poison – WINDEFENDER.EXE – 4d9ead6cc1fb2f22d9f6a3c363265734

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Backdoor Poison
Also known as: Worm Autorun, Trojan CI
SHA256: 2096b3c9d1f84ac1513f790f41c274af26e40d2fb65ed540ec3ba899bd1a1414
SHA1: 33e3109b6b0bbb9253e2ffb4ab54f6e294354508
MD5: 4d9ead6cc1fb2f22d9f6a3c363265734
File size: 211118 bytes

Created files:

%SysDir%\config\systemprofile\Application Data\WINDEFENDER.EXE – Backdoor Poison
%WinDir%\TEMP\MDM14.tmp_melt.bat – Backdoor Poison

Backdoor Poison created autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\WINDOWS DEFENDER: %WinDir%\System32\config\Systemprofile\Application Data\WINDEFENDER.EXE
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\WINDOWS DEFENDER: %WinDir%\System32\config\Systemprofile\Application Data\WINDEFENDER.EXE

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images