COYYOM.EXE – Backdoor Nitol

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

COYYOM.EXE – Backdoor Nitol removal

FileMD5Virus Alias
COYYOM.EXE 4b787d62036446af2f6ecc149427e706 Backdoor Nitol
COYYOM.EXE 4b787d62036446af2f6ecc149427e706 Trojan SuspiciousFile
COYYOM.EXE 4b787d62036446af2f6ecc149427e706 Trojan Eldorado
COYYOM.EXE 4b787d62036446af2f6ecc149427e706 Trojan OnLineGames
COYYOM.EXE 4b787d62036446af2f6ecc149427e706 Trojan Agent
COYYOM.EXE 4b787d62036446af2f6ecc149427e706 Trojan-Ransom Winlock

COYYOM.EXE size: 76288 bytes
COYYOM.EXE hash: 4B787D62036446AF2F6ECC149427E706

Created files:

%SysDir%\coyyom.exe
%SysDir%\gei33.dll

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\aspnet_states\Type: 10000000
HKLM\System\CurrentControlSet\Services\aspnet_states\Start: 02000000
HKLM\System\CurrentControlSet\Services\aspnet_states\DisplayName: ASP.NET State Services
HKLM\System\CurrentControlSet\Services\aspnet_states\ImagePath: %WinDir%\System32\coyyom.exe
HKLM\System\CurrentControlSet\Services\aspnet_states\Description: Provides support for out-of-to-process

Detected by UnHackMe:

COYYOM.EXE
Default location: %SYSDIR%\COYYOM.EXE

Dropper information:
MD5: b07368c367d567dbb668f85b0f5f4ee4
File size: 89088 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images