DOWNLOAD_ME.EXE – Trojan Artemis

Alex NightWatcher

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

DOWNLOAD_ME.EXE – Trojan Artemis removal

File	MD5	Virus Alias
DOWNLOAD_ME.EXE	04961a6ed2a37edf2ea1ae720e47e90d	Trojan Artemis
DOWNLOAD_ME.EXE	04961a6ed2a37edf2ea1ae720e47e90d	Trojan Hllw
DOWNLOAD_ME.EXE	04961a6ed2a37edf2ea1ae720e47e90d	Trojan Eldorado
DOWNLOAD_ME.EXE	04961a6ed2a37edf2ea1ae720e47e90d	Trojan Agent
DOWNLOAD_ME.EXE	04961a6ed2a37edf2ea1ae720e47e90d	Trojan Crypt
DOWNLOAD_ME.EXE	04961a6ed2a37edf2ea1ae720e47e90d	Backdoor IRCBot

DOWNLOAD_ME.EXE size: 35328 bytes
DOWNLOAD_ME.EXE hash: 04961A6ED2A37EDF2EA1AE720E47E90D

Created files:

%SYSDIR%\kazaabackupfiles\download_me.exe
%SYSDIR%\wincmd.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Winsock2 driver: WINCMD.EXEl3tm3in##revixtech2##chatWinsock2 driver spybot1.2cspybot1.2c?mIRC v6.13 Khaled Mardam-Bey
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce\Winsock2 driver: WINCMD.EXEl3tm3in##revixtech2##chatWinsock2 driver spybot1.2cspybot1.2c?mIRC v6.13 Khaled Mardam-Bey

Detected by UnHackMe:

DOWNLOAD_ME.EXE
Default location: %SYSDIR%\KAZAABACKUPFILES\DOWNLOAD_ME.EXE

Dropper information:
MD5: 04961a6ed2a37edf2ea1ae720e47e90d
File size: 35328 bytes

Leave a Reply Cancel reply

You must be logged in to post a comment.