WHEZEA.DLL – Backdoor Koutodoor

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

WHEZEA.DLL – Backdoor Koutodoor removal

File MD5 Virus Alias
WHEZEA.DLL 84a41d2118c7d628cfe86cd2d2d9afb2 Backdoor Koutodoor
WHEZEA.DLL 84a41d2118c7d628cfe86cd2d2d9afb2 Trojan Eldorado
WHEZEA.DLL 84a41d2118c7d628cfe86cd2d2d9afb2 Trojan Adload
WHEZEA.DLL 84a41d2118c7d628cfe86cd2d2d9afb2 Trojan Crypt

WHEZEA.DLL size: 57344 bytes
WHEZEA.DLL hash: 84A41D2118C7D628CFE86CD2D2D9AFB2

Created files:

%SysDir%\drivers\czxgj.sys
%SysDir%\whezea.dll

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\czxgj\Type: 01000000
HKLM\System\CurrentControlSet\Services\czxgj\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\czxgj\DisplayName: czxgj
HKLM\System\CurrentControlSet\Services\czxgj\ImagePath: 730079007300740065006D00330032005C0064007200690076006500720073005C0063007A00780067006A002E007300790073000000

Detected by UnHackMe:

WHEZEA.DLL
Default location: %SYSDIR%\WHEZEA.DLL

Dropper information:
MD5: 760de50eafb39e3979a03219da55d291
File size: 131328 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images