Rootkit ZeroAccess – @ – 06f4a64f45aa018491107f385dfc0f40

September 15, 2012

Alex NightWatcher

Rootkits No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Rootkit ZeroAccess
Also known as: Trojan Crypt, Trojan Kryptik
SHA256: 0ad6a6df07a0709daafaa7206e1d3d84bfb348c83abc8c323c9e3a8d355ce1fa
SHA1: 22a4f3a622216c751f2e6dd8b1531b7a8a533001
MD5: 06f4a64f45aa018491107f385dfc0f40
File size: 195584 bytes

Created files:

%Local AppData%\{ae229ccd-6a28-e4e8-8a47-3737ee4e0fed}\@ – Rootkit ZeroAccess
%Local AppData%\{ae229ccd-6a28-e4e8-8a47-3737ee4e0fed}\n – Rootkit ZeroAccess

Rootkit ZeroAccess created autostart registry keys:

HKCU\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InprocServer32\ThreadingModel: Both
HKCU\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InprocServer32 : %Local AppData%\{ae229ccd-6a28-e4e8-8a47-3737ee4e0fed}\n.

Leave a Reply Cancel reply

You must be logged in to post a comment.