Ring0.sys – Trojan Generic

November 2, 2012

Alex NightWatcher

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Ring0.sys – Trojan Generic removal

File	Virus Alias
Ring0.sys	Trojan Generic
Ring0.sys	Trojan Small
Ring0.sys	Trojan Downloader
Ring0.sys	Trojan Agent

Created files:

%SysDir%\drivers\Ring0.sys – Trojan Generic
%Temp%\68D6BF.dmp – Trojan Generic

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Ring0\Type: 01000000
HKLM\System\CurrentControlSet\Services\Ring0\Start: 03000000
HKLM\System\CurrentControlSet\Services\Ring0\DisplayName: Ring0
HKLM\System\CurrentControlSet\Services\Ring0\ImagePath: %WinDir%\System32\drivers\Ring0.sys

Detected by UnHackMe:

Ring0.sys
Default location: %SysDir%\drivers\Ring0.sys

Dropper information:
SHA256: 9ec01c1d6b70f88c6ae4d29ed68aea7c42e0d1bf4ef4ccd9de94f59ee9d9ba6f
SHA1: 6a0c2c7e502f1a379056b30fa818791adc53fbd5
MD5: 7d4b59ecf2285514f1b4242bcd52af9b
File size: 13824 bytes

Leave a Reply Cancel reply

You must be logged in to post a comment.