SESSMGR.EXE – Trojan Small

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

SESSMGR.EXE – Trojan Small removal

FileMD5Virus Alias
SESSMGR.EXE 035f05e1a091db996ce8869e563fd347 Trojan Small
SESSMGR.EXE 035f05e1a091db996ce8869e563fd347 Suspicious File
SESSMGR.EXE 035f05e1a091db996ce8869e563fd347 Trojan Artemis
SESSMGR.EXE 035f05e1a091db996ce8869e563fd347 Trojan Generic
SESSMGR.EXE 035f05e1a091db996ce8869e563fd347 Trojan Eldorado
SESSMGR.EXE 035f05e1a091db996ce8869e563fd347 Trojan Downloader

SESSMGR.EXE size: 465408 bytes
SESSMGR.EXE hash: 035F05E1A091DB996CE8869E563FD347

Created files:

%WinDir%\mstsc.exe
%UserProfile%\Local Settings\Application Data\Microsoft\rsvp.exe
%SysDir%\drivers\dllhost.exe
%SysDir%\drivers\sessmgr.exe
%TEMP%\Twain002.Mtx

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\Microsoft RSVP: %WinDir%\System32\config\SYSTEM~1\LOCALS~1\APPLIC~1\MICROS~1\rsvp.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Mstsc: %WinDir%\mstsc.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\DCOM: %WinDir%\System32\drivers\dllhost.exe

Detected by UnHackMe:

SESSMGR.EXE
Default location: %SYSDIR%\DRIVERS\SESSMGR.EXE

Dropper information:
MD5: 035f05e1a091db996ce8869e563fd347
File size: 465408 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images