4081D2.SYS – Trojan Artemis

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

4081D2.SYS – Trojan Artemis removal

FileMD5Virus Alias
4081D2.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan Artemis
4081D2.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan SuspiciousFile
4081D2.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan Generic
4081D2.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan Downloader
4081D2.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan ZBot
4081D2.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan Kryptik

4081D2.SYS size: 56704 bytes
4081D2.SYS hash: E2CEE1C1A9A2E7A89341B35E99A494C4

Created files:

%SysDir%\drivers\4081d2.sys
%Temp%\Etohs\ramyup.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\4081d2\Type: 01000000
HKLM\System\CurrentControlSet\Services\4081d2\Start: 01000000
HKLM\System\CurrentControlSet\Services\4081d2\DisplayName: ramyup.exe
HKLM\System\CurrentControlSet\Services\4081d2\ImagePath: %WinDir%\System32\drivers\4081d2.sys
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Ramyup: “%Temp%\Etohs\ramyup.exe”

Detected by UnHackMe:

4081D2.SYS
Default location: %SYSDIR%\DRIVERS\4081D2.SYS

Dropper information:
MD5: bce542de7d25cc4e18c70a23fe2136fd
File size: 458240 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images