pthreadGC2.dll – Trojan CoinMiner

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

pthreadGC2.dll – Trojan CoinMiner removal

FileVirus Alias
pthreadGC2.dll Trojan CoinMiner
pthreadGC2.dll Worm AMN

Created files:

%AppData%\Update1\chp.exe – Trojan CoinMiner
%AppData%\Update1\diablo120328.cl – Trojan CoinMiner
%AppData%\Update1\diakgcn120427.cl – Trojan CoinMiner
%AppData%\Update1\libcurl.dll – Trojan CoinMiner
%AppData%\Update1\libeay32.dll – Trojan CoinMiner
%AppData%\Update1\libidn-11.dll – Trojan CoinMiner
%AppData%\Update1\libpdcurses.dll – Trojan CoinMiner
%AppData%\Update1\libssl32.dll – Trojan CoinMiner
%AppData%\Update1\libusb-1.0.dll – Trojan CoinMiner
%AppData%\Update1\poclbm120327.cl – Trojan CoinMiner
%AppData%\Update1\pthreadGC2.dll – Trojan CoinMiner
%AppData%\Update1\scvhost.exe – Trojan CoinMiner
%AppData%\Update1\__tmp_rar_sfx_access_check_3522485 – Trojan CoinMiner

Autostart registry keys:

HKCU\Software\Microsoft\Windows\CurrentVersion\run\adobeupdate: “%AppData%\Update1\bat99.bat”

Detected by UnHackMe:

pthreadGC2.dll
Default location: %AppData%\Update1\pthreadGC2.dll

Dropper information:
SHA256: 5c1f4173247141a3f091ef6b09aa198bba42948e71bd60db54458686ed72be5a
SHA1: 0b7ab369e3e817256b40cb4fbe5ace1eee4e5c1a
MD5: 35704ce97dd10b7177d38fbb9271af50
File size: 1358515 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images