ALWS.EXE – Trojan Downloader

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

ALWS.EXE – Trojan Downloader removal

FileMD5Virus Alias
ALWS.EXE ba37f0ccf46598f1c8e9b0611e9cf125 Trojan Downloader
ALWS.EXE ba37f0ccf46598f1c8e9b0611e9cf125 Trojan Qhost
ALWS.EXE ba37f0ccf46598f1c8e9b0611e9cf125 Suspicious File
ALWS.EXE ba37f0ccf46598f1c8e9b0611e9cf125 Trojan Generic
ALWS.EXE ba37f0ccf46598f1c8e9b0611e9cf125 Trojan Click
ALWS.EXE ba37f0ccf46598f1c8e9b0611e9cf125 Trojan CI

ALWS.EXE size: 292864 bytes
ALWS.EXE hash: BA37F0CCF46598F1C8E9B0611E9CF125

Created files:

%WinDir%\alws.exe
%SysDir%\ssmgss.exe
%TEMP%\123.exe
%TEMP%\1919.exe
%WinDir%\zip.dll

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\alws: %WinDir%\alws.exe
HKLM\System\CurrentControlSet\Services\oxoddos\Type: 10000000
HKLM\System\CurrentControlSet\Services\oxoddos\Start: 02000000
HKLM\System\CurrentControlSet\Services\oxoddos\DisplayName: oxoddos
HKLM\System\CurrentControlSet\Services\oxoddos\ImagePath: %WinDir%\System32\ssmgss.exe
HKLM\System\CurrentControlSet\Services\oxoddos\Description: oxoddos

Detected by UnHackMe:

ALWS.EXE
Default location: %WinDir%\ALWS.EXE

Dropper information:
MD5: 03a49762698a3c3bb03317818f232b02
File size: 371712 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images