WJSPEED.EXE – Backdoor Hupigon

Alex NightWatcher

Backdoor No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

WJSPEED.EXE – Backdoor Hupigon removal

File	MD5	Virus Alias
WJSPEED.EXE	b619787303c2d2438fa97515b470e7ab	Backdoor Hupigon
WJSPEED.EXE	b619787303c2d2438fa97515b470e7ab	Trojan Agent

WJSPEED.EXE size: 701584 bytes
WJSPEED.EXE hash: B619787303C2D2438FA97515B470E7AB

Created files:

%Program Files%\wjplay2\20140506235251\DuiLib.dll
%Program Files%\wjplay2\20140506235251\PlayerUpdate.exe
%Program Files%\wjplay2\20140506235251\Unins.exe
%Program Files%\wjplay2\20140506235251\wjplay.exe
%Program Files%\wjplay2\20140506235251\WJSpeed.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\wjplay2_News_20140506235251: “%Program Files%\wjplay2\20140506235251\WJSpeed.exe” -mini
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\wjplay2_20140506235251: “%Program Files%\wjplay2\20140506235251\wjplay.exe” -mini

Detected by UnHackMe:

WJSPEED.EXE
Default location: %PROGRAM FILES%\WJPLAY2\20140506235251\WJSPEED.EXE

Dropper information:
MD5: 8f8388ff0f9508a4967de0e33ad72393
File size: 1996944 bytes

Leave a Reply Cancel reply

You must be logged in to post a comment.