671B7.SYS – Trojan Artemis

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

671B7.SYS – Trojan Artemis removal

FileMD5Virus Alias
671B7.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan Artemis
671B7.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan SuspiciousFile
671B7.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan Generic
671B7.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan Downloader
671B7.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan ZBot
671B7.SYS e2cee1c1a9a2e7a89341b35e99a494c4 Trojan Kryptik

671B7.SYS size: 56704 bytes
671B7.SYS hash: E2CEE1C1A9A2E7A89341B35E99A494C4

Created files:

%SysDir%\drivers\671b7.sys
%Temp%\Piiwi\yhcuof.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\671b7\Type: 01000000
HKLM\System\CurrentControlSet\Services\671b7\Start: 01000000
HKLM\System\CurrentControlSet\Services\671b7\DisplayName: yhcuof.exe
HKLM\System\CurrentControlSet\Services\671b7\ImagePath: %WinDir%\System32\drivers\671b7.sys
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Yhcuof: “%Temp%\Piiwi\yhcuof.exe”

Detected by UnHackMe:

671B7.SYS
Default location: %SYSDIR%\DRIVERS\671B7.SYS

Dropper information:
MD5: 0f367973cc73f4f831fda5440652fd9d
File size: 453120 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images