LEQX.DLL – Backdoor Hupigon

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

LEQX.DLL – Backdoor Hupigon removal

FileMD5Virus Alias
LEQX.DLL 224eb2b902564f36b41411c19c8998f7 Backdoor Hupigon
LEQX.DLL 224eb2b902564f36b41411c19c8998f7 Trojan Generic
LEQX.DLL 224eb2b902564f36b41411c19c8998f7 Trojan Click
LEQX.DLL 224eb2b902564f36b41411c19c8998f7 Trojan Eldorado
LEQX.DLL 224eb2b902564f36b41411c19c8998f7 Backdoor Pigeon
LEQX.DLL 224eb2b902564f36b41411c19c8998f7 Trojan Agent

LEQX.DLL size: 872944 bytes
LEQX.DLL hash: 224EB2B902564F36B41411C19C8998F7

Created files:

%Program Files%\Ddalm\Fcgu\Leqx.dll
%Program Files%\Ddalm\Ibwim.exe
%Program Files%\Ddalm\Tiowj.exe
%TEMP%\g843\Runtime.GetDataBack.for.NTFS.v3.69.Incl.Keygen-BRD.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\OALX\Start: 02000000
HKLM\System\CurrentControlSet\Services\OALX\Type: 10000000
HKLM\System\CurrentControlSet\Services\OALX\Description: Data Online Transaction Processing Module
HKLM\System\CurrentControlSet\Services\OALX\DisplayName: Data Online Transaction Processing Module
HKLM\System\CurrentControlSet\Services\OALX\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\OALX\Group: TDI
HKLM\System\CurrentControlSet\Services\OALX\ObjectName: LocalSystem
HKLM\System\CurrentControlSet\Services\OALX\ImagePath: %Program Files%\Ddalm\Tiowj.exe

Detected by UnHackMe:

LEQX.DLL
Default location: %PROGRAM FILES%\DDALM\FCGU\LEQX.DLL

Dropper information:
MD5: 62c587de243b5d14582cdb3e4c477808
File size: 4911334 bytes

Leave a Reply