CRYPTD.EXE – Trojan Buzus

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

CRYPTD.EXE – Trojan Buzus removal

FileMD5Virus Alias
CRYPTD.EXE 8a5c92f3c108794cd08d4e2ca99a794e Trojan Buzus
CRYPTD.EXE 8a5c92f3c108794cd08d4e2ca99a794e Trojan Bitcoin
CRYPTD.EXE 8a5c92f3c108794cd08d4e2ca99a794e Trojan Malware.Obscu
CRYPTD.EXE 8a5c92f3c108794cd08d4e2ca99a794e Trojan CoinMiner
CRYPTD.EXE 8a5c92f3c108794cd08d4e2ca99a794e Trojan Agent

CRYPTD.EXE size: 1478158 bytes
CRYPTD.EXE hash: 8A5C92F3C108794CD08D4E2CA99A794E

Created files:

C:\Userdll32\cryptd.exe
C:\Userdll32\cryptgo.exe
C:\Userdll32\diablo130302.cl
C:\Userdll32\diakgcn121016.cl
C:\Userdll32\drv\drv.exe
C:\Userdll32\libcurl-4.dll
C:\Userdll32\libeay32.dll
C:\Userdll32\libidn-11.dll
C:\Userdll32\librtmp.dll
C:\Userdll32\libssh2.dll
C:\Userdll32\mnrd.exe
C:\Userdll32\mnrdgo.exe
C:\Userdll32\phatk121016.cl
C:\Userdll32\poclbm130302.cl
C:\Userdll32\pthreadGC2.dll
C:\Userdll32\scrypt130511.cl
C:\Userdll32\ssleay32.dll
C:\Userdll32\zlib1.dll

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\JavaCrypth: C:\Userdll32\cryptgo.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Mnird32: C:\Userdll32\mnrdgo.exe

Detected by UnHackMe:

CRYPTD.EXE
Default location: C:\USERDLL32\CRYPTD.EXE

Dropper information:
MD5: 681eb886ffa9ae0825235bb011078ec2
File size: 10280477 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images