SSW.TIME.PRO.NET.V9.18-BEAN.EXE – Trojan Chifrax

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

SSW.TIME.PRO.NET.V9.18-BEAN.EXE – Trojan Chifrax removal

FileMD5Virus Alias
SSW.TIME.PRO.NET.V9.18-BEAN.EXE 131fc1de398d497601da083a84683046 Trojan Chifrax

SSW.TIME.PRO.NET.V9.18-BEAN.EXE size: 8218840 bytes
SSW.TIME.PRO.NET.V9.18-BEAN.EXE hash: 131FC1DE398D497601DA083A84683046

Created files:

%Program Files%\Aygr\Ehko\Geuxx.dll
%Program Files%\Aygr\Vowu.exe
%Program Files%\Aygr\Xlabq.exe
%TEMP%\g810\SSW.Time.PRO.NET.v9.18-BEAN.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\OALX\Start: 02000000
HKLM\System\CurrentControlSet\Services\OALX\Type: 10000000
HKLM\System\CurrentControlSet\Services\OALX\Description: Data Online Transaction Processing Module
HKLM\System\CurrentControlSet\Services\OALX\DisplayName: Data Online Transaction Processing Module
HKLM\System\CurrentControlSet\Services\OALX\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\OALX\Group: TDI
HKLM\System\CurrentControlSet\Services\OALX\ObjectName: LocalSystem
HKLM\System\CurrentControlSet\Services\OALX\ImagePath: %Program Files%\Aygr\Xlabq.exe

Detected by UnHackMe:

SSW.TIME.PRO.NET.V9.18-BEAN.EXE
Default location: %TEMP%\G810\SSW.TIME.PRO.NET.V9.18-BEAN.EXE

Dropper information:
MD5: 6f76d815ba5c8d14e1c32b81b70fb03c
File size: 10163718 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images