TEM81.EXE – Trojan Agent

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

TEM81.EXE – Trojan Agent removal

FileMD5Virus Alias
TEM81.EXE bd24082b7dd975d06982ff1a8cd789a8 Trojan Agent
TEM81.EXE bd24082b7dd975d06982ff1a8cd789a8 Trojan SuspiciousFile
TEM81.EXE bd24082b7dd975d06982ff1a8cd789a8 Trojan Xema
TEM81.EXE bd24082b7dd975d06982ff1a8cd789a8 Trojan Hllw
TEM81.EXE bd24082b7dd975d06982ff1a8cd789a8 Trojan Downloader
TEM81.EXE bd24082b7dd975d06982ff1a8cd789a8 Worm Viking

TEM81.EXE size: 23552 bytes
TEM81.EXE hash: BD24082B7DD975D06982FF1A8CD789A8

Created files:

%SysDir%\6to4.dll
%SysDir%\dllcache\6to4.dll
%TEMP%\tem81.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\6to4\Type: 20000000
HKLM\System\CurrentControlSet\Services\6to4\Start: 02000000
HKLM\System\CurrentControlSet\Services\6to4\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\6to4\DisplayName: 6to4
HKLM\System\CurrentControlSet\Services\6to4\ImagePath: %SystemRoot%\System32\svchost.exe -k netsvcs
HKLM\System\CurrentControlSet\Services\6to4\SBIE_Win32ExitCode: 7F000000
HKLM\System\CurrentControlSet\Services\6to4\Parameters\ServiceDll: 43003A005C00570049004E0044004F00570053005C00730079007300740065006D00330032005C00360074006F0034002E0064006C006C000000

Detected by UnHackMe:

TEM81.EXE
Default location: %TEMP%\TEM81.EXE

Dropper information:
MD5: f209ae8d8fdb95f5d961e6cf6a9ada42
File size: 1712128 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images