PPI.EXE – Trojan Kazy

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

PPI.EXE – Trojan Kazy removal

FileMD5Virus Alias
PPI.EXE 493a02035f0c52d13b524f70631f5f63 Trojan Kazy
PPI.EXE 493a02035f0c52d13b524f70631f5f63 Trojan Generic
PPI.EXE 493a02035f0c52d13b524f70631f5f63 Trojan MLW
PPI.EXE 493a02035f0c52d13b524f70631f5f63 Trojan Hllw
PPI.EXE 493a02035f0c52d13b524f70631f5f63 Trojan Downloader
PPI.EXE 493a02035f0c52d13b524f70631f5f63 Worm Autorun

PPI.EXE size: 55296 bytes

Created files:

%TEMP%\IXP000.TMP\keygen.exe
%TEMP%\IXP000.TMP\ppi.exe
%TEMP%\ueZcHGOmprbmarYqKHUM.DLL

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\wextract_cleanup0: rundll32.exe %WinDir%\System32\advpack.dll,DelNodeRunDLL32 “%TEMP%\IXP000.TMP\”

Detected by UnHackMe:

PPI.EXE
Default location: %TEMP%\IXP000.TMP\PPI.EXE

Dropper information:
MD5: ffba827f636e4042aec35d77df00c84d
File size: 275968 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images