BQMAOAFQC.PIC – Backdoor Farfli

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

BQMAOAFQC.PIC – Backdoor Farfli removal

FileMD5Virus Alias
BQMAOAFQC.PIC 77649d17f9fa1944930032b6f3a405d5 Backdoor Farfli
BQMAOAFQC.PIC 77649d17f9fa1944930032b6f3a405d5 Trojan PcClient
BQMAOAFQC.PIC 77649d17f9fa1944930032b6f3a405d5 Trojan Eldorado
BQMAOAFQC.PIC 77649d17f9fa1944930032b6f3a405d5 Trojan Downloader
BQMAOAFQC.PIC 77649d17f9fa1944930032b6f3a405d5 Trojan Barys
BQMAOAFQC.PIC 77649d17f9fa1944930032b6f3a405d5 Backdoor PcClien

BQMAOAFQC.PIC size: 15886848 bytes
BQMAOAFQC.PIC hash: 77649D17F9FA1944930032B6F3A405D5

Created files:

C:\1656500.dll
%Program Files%\Gbic\Bqmaoafqc.pic

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\RemoteAccess\RouterManagers\Ip\DLLPath: 43003A005C0031003600350036003500300030002E0064006C006C000000
HKLM\System\CurrentControlSet\Services\Xhtftj Fhiupvnx Tnc\Type: 10010000
HKLM\System\CurrentControlSet\Services\Xhtftj Fhiupvnx Tnc\Start: 02000000
HKLM\System\CurrentControlSet\Services\Xhtftj Fhiupvnx Tnc\DisplayName: Wylkph Dolkrtbh Ldrlsynm Wvsq
HKLM\System\CurrentControlSet\Services\Xhtftj Fhiupvnx Tnc\ImagePath: %SystemRoot%\System32\svchost.exe -k imgsvc

Detected by UnHackMe:

BQMAOAFQC.PIC
Default location: %PROGRAM FILES%\GBIC\BQMAOAFQC.PIC

Dropper information:
MD5: d9caff5acd58d43e4d7d8896c059b813
File size: 137216 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images