REMOVETAM.EXE – Trojan Graftor

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

REMOVETAM.EXE – Trojan Graftor removal

FileMD5Virus Alias
REMOVETAM.EXE 71d87d4f3751d4fe3b4b46b2fbcbbd3a Trojan Graftor

REMOVETAM.EXE size: 170008 bytes
REMOVETAM.EXE hash: 71D87D4F3751D4FE3B4B46B2FBCBBD3A

Created files:

%AppData%\theam\common\bin\RemoveTAM.exe
%AppData%\theam\common\bin\TAMGuard.exe
%AppData%\theam\common\bin\TAMUpdate.exe
%AppData%\theam\common\bin\TheAM.exe
%SysDir%\mali.exe

Autostart registry keys:

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\TheAM: %WinDir%\System32\config\Systemprofile\Application Data\theam\common\bin\TAMUpdate.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\guardtam: %WinDir%\System32\config\Systemprofile\Application Data\theam\common\bin\tamguard.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\tamgrd: %WinDir%\System32\config\Systemprofile\Application Data\theam\common\bin\TheAm.exe

Detected by UnHackMe:

REMOVETAM.EXE
Default location: %APPDATA%\THEAM\COMMON\BIN\REMOVETAM.EXE

Dropper information:
MD5: 04e09092f1d671c83ac911657c2aa8d1
File size: 839680 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images