OSIISM.EXE – Backdoor Nitol

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

OSIISM.EXE – Backdoor Nitol removal

FileMD5Virus Alias
OSIISM.EXE 11b6ddc635a10a26944dedb6097fb51b Backdoor Nitol
OSIISM.EXE 11b6ddc635a10a26944dedb6097fb51b Trojan Eldorado
OSIISM.EXE 11b6ddc635a10a26944dedb6097fb51b Backdoor RBot
OSIISM.EXE 11b6ddc635a10a26944dedb6097fb51b Trojan Downloader
OSIISM.EXE 11b6ddc635a10a26944dedb6097fb51b Trojan Agent
OSIISM.EXE 11b6ddc635a10a26944dedb6097fb51b Trojan Scar

OSIISM.EXE size: 72192 bytes
OSIISM.EXE hash: 11B6DDC635A10A26944DEDB6097FB51B

Created files:

%SysDir%\gei33.dll
%SysDir%\osiism.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\aspnet_seeees\Type: 10000000
HKLM\System\CurrentControlSet\Services\aspnet_seeees\Start: 02000000
HKLM\System\CurrentControlSet\Services\aspnet_seeees\DisplayName: ASP.NET State Seeeices
HKLM\System\CurrentControlSet\Services\aspnet_seeees\ImagePath: %WinDir%\System32\osiism.exe
HKLM\System\CurrentControlSet\Services\aspnet_seeees\Description: Provides seeeert for out-of-to-process

Detected by UnHackMe:

OSIISM.EXE
Default location: %SYSDIR%\OSIISM.EXE

Dropper information:
MD5: 11b6ddc635a10a26944dedb6097fb51b
File size: 72192 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images