Trojan Agent – 6to4v32.dll – b354a3d605aca446e73034766a606374

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Agent
Also known as: Trojan Siggen, Trojan Generic
SHA256: ec29fb38192b7e60b49ceba439dac8cd1464a32d8dc198fbe409e901f4d8a9fb
SHA1: 3f77a51a1383a46c180ddd19fa483dc1edfd96a7
MD5: b354a3d605aca446e73034766a606374
File size: 241664 bytes

Created files:

%SysDir%\6to4v32.dll – Trojan Agent
%SysDir%\IUNSEw32.dll – Trojan Agent
%SysDir%\IUNSLw32.dll – Trojan Agent
%SysDir%\svchost.exe – Trojan Agent
%SysDir%\winlogon.exe – Trojan Agent
%Temp%\B354A3D605ACA446E73034766A606374.bat – Trojan Agent
%Temp%\v12901.exe – Trojan Agent

Trojan Agent created autostart registry keys:

HKLM\System\CurrentControlSet\Services\6to4\Type: 20010000
HKLM\System\CurrentControlSet\Services\6to4\Start: 02000000
HKLM\System\CurrentControlSet\Services\6to4\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\6to4\DisplayName: 4E006500740077006F0072006B002000530065006300750072006900740079000000
HKLM\System\CurrentControlSet\Services\6to4\ImagePath: %SystemRoot%\System32\svchost.exe -k netsvcs
HKLM\System\CurrentControlSet\Services\6to4\Description: 570069006E0064006F0077007300200050006F0077006500720020004D0061006E006100670065006D0065006E007400200053006500720076006900630065000000
HKLM\System\CurrentControlSet\Services\6to4\Parameters\ServiceDll: 43003A005C00570049004E0044004F00570053005C00730079007300740065006D00330032005C00360074006F0034007600330032002E0064006C006C000000
HKLM\System\CurrentControlSet\Services\IUNS\Type: 20010000
HKLM\System\CurrentControlSet\Services\IUNS\Start: 02000000
HKLM\System\CurrentControlSet\Services\IUNS\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\IUNS\DisplayName: Intel(R) Management Services
HKLM\System\CurrentControlSet\Services\IUNS\ImagePath: %SystemRoot%\System32\svchost.exe -k IUNSS
HKLM\System\CurrentControlSet\Services\IUNS\Description: Intel(R) Management and Security Application User Notification Services
HKLM\System\CurrentControlSet\Services\IUNS\Parameters\ServiceDll: 43003A005C00570049004E0044004F00570053005C00730079007300740065006D00330032005C00490055004E0053004C007700330032002E0064006C006C000000

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images