IMEUMW.EXE – Backdoor Nitol

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

IMEUMW.EXE – Backdoor Nitol removal

FileMD5Virus Alias
IMEUMW.EXE fad066723487cb1e41ff5a4b5d356a03 Backdoor Nitol
IMEUMW.EXE fad066723487cb1e41ff5a4b5d356a03 Trojan SuspiciousFile
IMEUMW.EXE fad066723487cb1e41ff5a4b5d356a03 Trojan Artemis
IMEUMW.EXE fad066723487cb1e41ff5a4b5d356a03 Trojan MLW
IMEUMW.EXE fad066723487cb1e41ff5a4b5d356a03 Trojan Eldorado
IMEUMW.EXE fad066723487cb1e41ff5a4b5d356a03 Trojan Downloader

IMEUMW.EXE size: 109568 bytes
IMEUMW.EXE hash: FAD066723487CB1E41FF5A4B5D356A03

Created files:

%SysDir%\imeumw.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Nationalttl\Type: 10000000
HKLM\System\CurrentControlSet\Services\Nationalttl\Start: 02000000
HKLM\System\CurrentControlSet\Services\Nationalttl\DisplayName: Nationalcki Instruments Domain Service
HKLM\System\CurrentControlSet\Services\Nationalttl\ImagePath: %WinDir%\System32\imeumw.exe
HKLM\System\CurrentControlSet\Services\Nationalttl\Description: Providessnh a domain server for NI security.

Detected by UnHackMe:

IMEUMW.EXE
Default location: %SYSDIR%\IMEUMW.EXE

Dropper information:
MD5: fad066723487cb1e41ff5a4b5d356a03
File size: 109568 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images