SUPEREC.IO.SYS – Backdoor Hupigon

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

SUPEREC.IO.SYS – Backdoor Hupigon removal

FileMD5Virus Alias
SUPEREC.IO.SYS b5307cb65ddd5cb468e94b11c9db01ed Backdoor Hupigon
SUPEREC.IO.SYS b5307cb65ddd5cb468e94b11c9db01ed Trojan BadReputation
SUPEREC.IO.SYS b5307cb65ddd5cb468e94b11c9db01ed Trojan SuspiciousFile
SUPEREC.IO.SYS b5307cb65ddd5cb468e94b11c9db01ed Trojan Generic

SUPEREC.IO.SYS size: 3840 bytes
SUPEREC.IO.SYS hash: B5307CB65DDD5CB468E94B11C9DB01ED

Created files:

%SysDir%\superec.io.sys
%TEMP%\DNF??????????????v2.1.exe
%TEMP%\server.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Description: IEXPLORE.EXE
HKLM\System\CurrentControlSet\Services\Parameters\ServiceDll: 43003A005C0044006F00630075006D0065006E0074007300200061006E0064002000530065007400740069006E00670073005C004C006F00630061006C0020005300650072007600650072005C00770061006E006D00650069002E0064006C006C000000
HKLM\System\CurrentControlSet\Services\Parameters\ServiceMain: wanmei
HKLM\System\CurrentControlSet\Services\TianSinl\Type: 01000000
HKLM\System\CurrentControlSet\Services\TianSinl\Start: 03000000
HKLM\System\CurrentControlSet\Services\TianSinl\DisplayName: TianSinl
HKLM\System\CurrentControlSet\Services\TianSinl\ImagePath: %WinDir%\System32\superec.io.sys

Detected by UnHackMe:

SUPEREC.IO.SYS
Default location: %SYSDIR%\SUPEREC.IO.SYS

Dropper information:
MD5: e8ecb42e9c987f8350e1b6d79e54168d
File size: 2113024 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images