Trojan Bancos – bb.exe – 8aef0db6603e95037c7288d3f8ec7123

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Bancos
Also known as: Trojan ZBot, Trojan Banker
SHA256: dd9d78c5718ce8971854dfceb6c69567f24be24469c5a0af5829a15b07c67cfd
SHA1: 7e3fdb89d870fe3ddb40fbfd8ee81e35ca8d0f13
MD5: 8aef0db6603e95037c7288d3f8ec7123
File size: 3128981 bytes

Created files:

%Program Files%\WsWeb\bb.exe – Trojan Bancos
%Program Files%\WsWeb\bctf.bat – Trojan Bancos
%Program Files%\WsWeb\bradesco.exe – Trojan Bancos
%Program Files%\WsWeb\caixa.exe – Trojan Bancos
%Program Files%\WsWeb\gf.exe – Trojan Bancos
%Program Files%\WsWeb\iek.exe – Trojan Bancos
%Program Files%\WsWeb\itau.exe – Trojan Bancos
%Program Files%\WsWeb\live.exe – Trojan Bancos
%Program Files%\WsWeb\mon.exe – Trojan Bancos
%Program Files%\WsWeb\msgex.exe – Trojan Bancos
%Program Files%\WsWeb\mwnming.exe – Trojan Bancos
%Program Files%\WsWeb\net.exe – Trojan Bancos
%Program Files%\WsWeb\rds.exe – Trojan Bancos
%Program Files%\WsWeb\Readme.exe – Trojan Bancos
%Program Files%\WsWeb\real.exe – Trojan Bancos
%Program Files%\WsWeb\santanderbanespa.exe – Trojan Bancos
%Program Files%\WsWeb\scrypt.exe – Trojan Bancos
%Program Files%\WsWeb\sendchat.exe – Trojan Bancos
%Program Files%\WsWeb\varios.exe – Trojan Bancos

Trojan Bancos created autostart registry keys:

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\mwnming: %Program Files%\WsWeb\mwnming.exe

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images