USERDATA.DLL – Backdoor Hupigon

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

USERDATA.DLL – Backdoor Hupigon removal

File MD5 Virus Alias
USERDATA.DLL d636fb81599b25e859729c165f1128df Backdoor Hupigon
USERDATA.DLL d636fb81599b25e859729c165f1128df Trojan Eldorado
USERDATA.DLL d636fb81599b25e859729c165f1128df Trojan Downloader
USERDATA.DLL d636fb81599b25e859729c165f1128df Trojan Agent
USERDATA.DLL d636fb81599b25e859729c165f1128df Trojan Delf

USERDATA.DLL size: 339456 bytes
USERDATA.DLL hash: D636FB81599B25E859729C165F1128DF

Created files:

%SysDir%\userdata.dll
%SysDir%\userdata.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Systemlog \Type: 10010000
HKLM\System\CurrentControlSet\Services\Systemlog \Start: 02000000
HKLM\System\CurrentControlSet\Services\Systemlog \DisplayName: SYSTEM Log Administrators
HKLM\System\CurrentControlSet\Services\Systemlog \ImagePath: %WinDir%\System32\svchost.exe -k netsvcs
HKLM\System\CurrentControlSet\Services\Systemlog \Description: Windows ????????????
HKLM\System\CurrentControlSet\Services\Systemlog \SBIE_Win32ExitCode: 02000000
HKLM\System\CurrentControlSet\Services\Systemlog \Parameters\ServiceDll: 43003A005C00570049004E0044004F00570053005C00730079007300740065006D00330032005C00750073006500720064006100740061002E0064006C006C00200020000000

Detected by UnHackMe:

USERDATA.DLL
Default location: %SYSDIR%\USERDATA.DLL

Dropper information:
MD5: 7be13b29c25a1af0dfbd3c3080a0aa25
File size: 492544 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images