EGCYUPO.EXE – Trojan ZBot

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit card is required. Reviews. EULA. Privacy Policy.

EGCYUPO.EXE – Trojan ZBot removal

File MD5 Virus Alias
EGCYUPO.EXE 204281eeab50d8819dd6fa4a00d6774d Trojan ZBot
EGCYUPO.EXE 204281eeab50d8819dd6fa4a00d6774d Trojan Generic!rem
EGCYUPO.EXE 204281eeab50d8819dd6fa4a00d6774d Trojan Eldorado
EGCYUPO.EXE 204281eeab50d8819dd6fa4a00d6774d Trojan Panda
EGCYUPO.EXE 204281eeab50d8819dd6fa4a00d6774d Trojan Kazy
EGCYUPO.EXE 204281eeab50d8819dd6fa4a00d6774d Trojan Agent

EGCYUPO.EXE size: 143872 bytes
EGCYUPO.EXE hash: 204281EEAB50D8819DD6FA4A00D6774D

Created files:

%AppData%\Ahed\pauvola.lyf
%AppData%\Dioqp\egcyupo.exe
%AppData%\Microsoft\Address Book\USER.wab
%Local AppData%\Identities\{90CDECDB-42CE-4A44-A47A-25385119CC70}\Microsoft\Outlook Express\00000004.dbx
%Local AppData%\Identities\{90CDECDB-42CE-4A44-A47A-25385119CC70}\Microsoft\Outlook Express\Folders.dbx
%Local AppData%\Identities\{90CDECDB-42CE-4A44-A47A-25385119CC70}\Microsoft\Outlook Express\Inbox.dbx

Detected by UnHackMe:

EGCYUPO.EXE
Default location: %APPDATA%\DIOQP\EGCYUPO.EXE

Dropper information:
MD5: 90a53295d0a770fc3521d01edad517bc
File size: 143872 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images