HRA33.DLL – Backdoor Nitol

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

HRA33.DLL – Backdoor Nitol removal

FileMD5Virus Alias
HRA33.DLL 7147ff24579a477a1a34696926e573f1 Backdoor Nitol
HRA33.DLL 7147ff24579a477a1a34696926e573f1 Trojan Downloader
HRA33.DLL 7147ff24579a477a1a34696926e573f1 Worm AMN
HRA33.DLL 7147ff24579a477a1a34696926e573f1 Trojan Agent
HRA33.DLL 7147ff24579a477a1a34696926e573f1 Trojan FakeAV
HRA33.DLL 7147ff24579a477a1a34696926e573f1 Trojan Scar

HRA33.DLL size: 7680 bytes
HRA33.DLL hash: 7147FF24579A477A1A34696926E573F1

Created files:

%SysDir%\hra33.dll
%SysDir%\zqlrqa.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Distribueoo\Type: 10000000
HKLM\System\CurrentControlSet\Services\Distribueoo\Start: 02000000
HKLM\System\CurrentControlSet\Services\Distribueoo\DisplayName: Distribubaj Transaction Coordinator Service
HKLM\System\CurrentControlSet\Services\Distribueoo\ImagePath: %WinDir%\System32\zqlrqa.exe
HKLM\System\CurrentControlSet\Services\Distribueoo\Description: Distribuain Transaction Coordinator Service.

Detected by UnHackMe:

HRA33.DLL
Default location: %SYSDIR%\HRA33.DLL

Dropper information:
MD5: 3fe15ed5fac2f3f79e2745bec9780744
File size: 47104 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images