DOFFKM.EXE – Backdoor Nitol

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

DOFFKM.EXE – Backdoor Nitol removal

FileMD5Virus Alias
DOFFKM.EXE 1b318ab041e655f4f472bed606dab292 Backdoor Nitol
DOFFKM.EXE 1b318ab041e655f4f472bed606dab292 Trojan Generic
DOFFKM.EXE 1b318ab041e655f4f472bed606dab292 Trojan Downloader
DOFFKM.EXE 1b318ab041e655f4f472bed606dab292 Trojan OnLineGames
DOFFKM.EXE 1b318ab041e655f4f472bed606dab292 Trojan Agent
DOFFKM.EXE 1b318ab041e655f4f472bed606dab292 Trojan Small

DOFFKM.EXE size: 36352 bytes
DOFFKM.EXE hash: 1B318AB041E655F4F472BED606DAB292

Created files:

%SysDir%\doffkm.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Nationaluag\Type: 10010000
HKLM\System\CurrentControlSet\Services\Nationaluag\Start: 02000000
HKLM\System\CurrentControlSet\Services\Nationaluag\DisplayName: Nationalvog Instruments Domain Service
HKLM\System\CurrentControlSet\Services\Nationaluag\ImagePath: %WinDir%\System32\doffkm.exe

Detected by UnHackMe:

DOFFKM.EXE
Default location: %SYSDIR%\DOFFKM.EXE

Dropper information:
MD5: de6e2ab0763928d974ac34ba70e01b94
File size: 44032 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images