Trojan Banload – cript.dll – a0d6362858ae42a1c4b066e3a9a5e71f

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Banload
Also known as: Trojan Downloader.Generic, Trojan Generic.KD
SHA256: 4d1aa972e766b01d99da409ff74d25b8027b2af8b776fe3f5943011988a53ba9
SHA1: 63e0a278016cfde1ec1653a83f616bc1e811b635
MD5: a0d6362858ae42a1c4b066e3a9a5e71f
File size: 258048 bytes

Created files:

%Personal%\dbfeacbd\cript.dll – Trojan Banload
%Personal%\dbfeacbd\ctqmon.exe – Trojan Banload
%Personal%\dbfeacbd\dsua.exe – Trojan Banload
%Personal%\dbfeacbd\Firewall_Windows.exe – Trojan Banload
%Personal%\dbfeacbd\icudt.dll – Trojan Banload
%Personal%\dbfeacbd\libcef.dll – Trojan Banload
%Personal%\dbfeacbd\madCHook.dll – Trojan Banload
%Personal%\dbfeacbd\mdmgr.exe – Trojan Banload
%Personal%\dbfeacbd\mmr.exe – Trojan Banload
%Personal%\dbfeacbd\mpntz.exe – Trojan Banload
%Personal%\dbfeacbd\pvchost.exe – Trojan Banload
%Personal%\dbfeacbd\svhost.exe – Trojan Banload
%Personal%\dbfeacbd\winupdate.exe – Trojan Banload

Trojan Banload created autostart registry keys:

HKCU\Software\Microsoft\Windows\CurrentVersion\RUN\ctqmon.exe: %Personal%\dbfeacbd\ctqmon.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\RUN\svhost.exe: %Personal%\dbfeacbd\svhost.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\RUN\pvchost.exe: %Personal%\dbfeacbd\pvchost.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\RUN\winupdate.exe: %Personal%\dbfeacbd\winupdate.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\RUN\dsbua.exe: %Personal%\dbfeacbd\dsbua.exe

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images