WINBOOT.EXE – Backdoor SubSeven

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

WINBOOT.EXE – Backdoor SubSeven removal

FileMD5Virus Alias
WINBOOT.EXE 171ac28b6766dc22a247328f1404edfd Backdoor SubSeven
WINBOOT.EXE 171ac28b6766dc22a247328f1404edfd Trojan Eldorado
WINBOOT.EXE 171ac28b6766dc22a247328f1404edfd Backdoor RBot
WINBOOT.EXE 171ac28b6766dc22a247328f1404edfd Trojan Delf
WINBOOT.EXE 171ac28b6766dc22a247328f1404edfd Backdoor IRCBot

WINBOOT.EXE size: 990627 bytes
WINBOOT.EXE hash: 171AC28B6766DC22A247328F1404EDFD

Created files:

%SysDir%\framedyn.dll
%TEMP%\tle2275602.exe
%TEMP%\tle2275882.exe
%WinDir%\winboot.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices\WinLoader: winboot.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices : winboot.exe

Detected by UnHackMe:

WINBOOT.EXE
Default location: %WinDir%\WINBOOT.EXE

Dropper information:
MD5: 1603c17deef5d18e177c0a2273659422
File size: 527192 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images