NJ-CRYPT.EXE – Trojan Barys

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

NJ-CRYPT.EXE – Trojan Barys removal

FileMD5Virus Alias
NJ-CRYPT.EXE 80bedf1d567d7d76c3725432235513fc Trojan Barys
NJ-CRYPT.EXE 80bedf1d567d7d76c3725432235513fc Trojan Generic
NJ-CRYPT.EXE 80bedf1d567d7d76c3725432235513fc Trojan CI
NJ-CRYPT.EXE 80bedf1d567d7d76c3725432235513fc Trojan Agent
NJ-CRYPT.EXE 80bedf1d567d7d76c3725432235513fc Trojan Refroso

NJ-CRYPT.EXE size: 29184 bytes
NJ-CRYPT.EXE hash: 80BEDF1D567D7D76C3725432235513FC

Created files:

%Program Files%\CELESTY.EXE
%Program Files%\NJ-CRYPT.EXE
%Program Files%\NJ-CRYPTT.VBS
%SysDir%\config\systemprofile\Start Menu\Programs\Startup\NJ-CRYPTT.VBS
%TEMP%\NJ-CRYPTT.VBS
%TEMP%\winrar.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\run\NJ-CRYPTT: “%TEMP%\NJ-CRYPTT.VBS”
HKCU\Software\Microsoft\Windows\CurrentVersion\run\NJ-CRYPTT: “%TEMP%\NJ-CRYPTT.VBS”

Detected by UnHackMe:

NJ-CRYPT.EXE
Default location: %PROGRAM FILES%\NJ-CRYPT.EXE

Dropper information:
MD5: b87479db6719be6dd1b3cab136b5011e
File size: 3146240 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images