wagqaw.exe – Backdoor Nitol

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

wagqaw.exe – Backdoor Nitol removal

FileVirus Alias
wagqaw.exe Backdoor Nitol
wagqaw.exe Trojan Magania
wagqaw.exe Trojan Agent
wagqaw.exe Trojan Generic
wagqaw.exe Trojan Graftor
wagqaw.exe Backdoor RBot

Created files:

%SysDir%\wagqaw.exe – Backdoor Nitol

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Nationallli\Type: 10000000
HKLM\System\CurrentControlSet\Services\Nationallli\Start: 02000000
HKLM\System\CurrentControlSet\Services\Nationallli\DisplayName: Nationalbto Instruments Domain Service
HKLM\System\CurrentControlSet\Services\Nationallli\ImagePath: %WinDir%\System32\wagqaw.exe
HKLM\System\CurrentControlSet\Services\Nationallli\Description: Providesdcg a domain server for NI security.

Detected by UnHackMe:

wagqaw.exe
Default location: %SysDir%\wagqaw.exe

Dropper information:
SHA256: 5dda8fd6b6659bebbe38017481fb69aec2e7440a1d5aa01cb2bd3d5f73371e27
SHA1: 94a8c1935c23fbaaa2f4ac7db9bede293734f4f4
MD5: 50a03ae23f40191116464ebc60e9029c
File size: 37376 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images