N-STALKER.ENTERPRISE.EDITION.2006.V6.0.1.121-KEYGEN.EXE – Trojan Banker

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

N-STALKER.ENTERPRISE.EDITION.2006.V6.0.1.121-KEYGEN.EXE – Trojan Banker removal

FileMD5Virus Alias
N-STALKER.ENTERPRISE.EDITION.2006.V6.0.1.121-KEYGEN.EXE 2123e74acbbc7d145f5344d119ce5d06 Trojan Banker
N-STALKER.ENTERPRISE.EDITION.2006.V6.0.1.121-KEYGEN.EXE 2123e74acbbc7d145f5344d119ce5d06 Trojan WS.Reputation
N-STALKER.ENTERPRISE.EDITION.2006.V6.0.1.121-KEYGEN.EXE 2123e74acbbc7d145f5344d119ce5d06 Trojan Generic
N-STALKER.ENTERPRISE.EDITION.2006.V6.0.1.121-KEYGEN.EXE 2123e74acbbc7d145f5344d119ce5d06 Trojan Chifrax
N-STALKER.ENTERPRISE.EDITION.2006.V6.0.1.121-KEYGEN.EXE 2123e74acbbc7d145f5344d119ce5d06 Trojan CI

N-STALKER.ENTERPRISE.EDITION.2006.V6.0.1.121-KEYGEN.EXE size: 8593964 bytes
N-STALKER.ENTERPRISE.EDITION.2006.V6.0.1.121-KEYGEN.EXE hash: 2123E74ACBBC7D145F5344D119CE5D06

Created files:

%Program Files%\Mwwe\Iriu.exe
%Program Files%\Mwwe\Oifoz.exe
%Program Files%\Mwwe\Qiqu\Zciw.dll
%TEMP%\g850\N-Stalker.Enterprise.Edition.2006.v6.0.1.121-Keygen.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\OALX\Start: 02000000
HKLM\System\CurrentControlSet\Services\OALX\Type: 10000000
HKLM\System\CurrentControlSet\Services\OALX\Description: Data Online Transaction Processing Module
HKLM\System\CurrentControlSet\Services\OALX\DisplayName: Data Online Transaction Processing Module
HKLM\System\CurrentControlSet\Services\OALX\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\OALX\Group: TDI
HKLM\System\CurrentControlSet\Services\OALX\ObjectName: LocalSystem
HKLM\System\CurrentControlSet\Services\OALX\ImagePath: %Program Files%\Mwwe\Iriu.exe

Detected by UnHackMe:

N-STALKER.ENTERPRISE.EDITION.2006.V6.0.1.121-KEYGEN.EXE
Default location: %TEMP%\G850\N-STALKER.ENTERPRISE.EDITION.2006.V6.0.1.121-KEYGEN.EXE

Dropper information:
MD5: 54da951261ea445c574bf61735fbae30
File size: 10538630 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images