282B6B.SYS – Trojan Artemis

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

282B6B.SYS – Trojan Artemis removal

FileMD5Virus Alias
282B6B.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan Artemis
282B6B.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan SuspiciousFile
282B6B.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan Generic
282B6B.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan Downloader
282B6B.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan ZBot
282B6B.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan Kryptik

282B6B.SYS size: 56704 bytes
282B6B.SYS hash: E2CEE1C1A9A2E7A89341B35E99A494C4

Created files:

%SysDir%\drivers\282b6b.sys
%Temp%\Iryl\ilgo.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\282b6b\Type: 01000000
HKLM\System\CurrentControlSet\Services\282b6b\Start: 01000000
HKLM\System\CurrentControlSet\Services\282b6b\DisplayName: ilgo.exe
HKLM\System\CurrentControlSet\Services\282b6b\ImagePath: %WinDir%\System32\drivers\282b6b.sys
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Ilgo: “%Temp%\Iryl\ilgo.exe”

Detected by UnHackMe:

282B6B.SYS
Default location: %SYSDIR%\DRIVERS\282B6B.SYS

Dropper information:
MD5: 783f01b64e48bc224e2b6c10fca90461
File size: 758784 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images