COMMANDPROMPT.SYSM – Trojan Downloader

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

COMMANDPROMPT.SYSM – Trojan Downloader removal

FileMD5Virus Alias
COMMANDPROMPT.SYSM 20d94a13868d5cdb3246e76ccdc04a87 Trojan Downloader
COMMANDPROMPT.SYSM 20d94a13868d5cdb3246e76ccdc04a87 Trojan SuspiciousFile
COMMANDPROMPT.SYSM 20d94a13868d5cdb3246e76ccdc04a87 Trojan Generic
COMMANDPROMPT.SYSM 20d94a13868d5cdb3246e76ccdc04a87 Trojan Hllw
COMMANDPROMPT.SYSM 20d94a13868d5cdb3246e76ccdc04a87 Worm Autorun
COMMANDPROMPT.SYSM 20d94a13868d5cdb3246e76ccdc04a87 Trojan Agent

COMMANDPROMPT.SYSM size: 78335 bytes
COMMANDPROMPT.SYSM hash: 20D94A13868D5CDB3246E76CCDC04A87

Created files:

C:\windows\system32\CommandPrompt.Sysm
C:\windows\system32\Desktop.sysm
C:\windows\system32\Windows 3D.scr
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\csrss.exe
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\csrss.exe?
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\lsass.exe
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\lsass.exe?
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\msvbvm60.dll
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\Paraysutki_VM_Community
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\services.exe
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\smss.exe
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\smss.exe?
C:\windows\system32\~A~m~B~u~R~a~D~u~L~\winlogon.exe
%AppData%\Microsoft\2068
%AppData%\Microsoft\amnv.exe
%Startup%\Microsoft Connection.msd

Detected by UnHackMe:

COMMANDPROMPT.SYSM
Default location: %SYSDIR%\COMMANDPROMPT.SYSM

Dropper information:
MD5: 0cfd0ea83402d335706f585075e6ed2e
File size: 130050 bytes

Leave a Reply