Trojan Barys – mmails2.exe – 24a483c962091218ca872a52b7f3af91

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Barys
Also known as: Backdoor IRCBot, Worm Pushbot
SHA256: 5c7505d6b25d4cf065a1546d0109f6d783529992b4faad5672a7447832b08032
SHA1: 3afeae9e19408dd5e2e1b52cd986c893dd54fca7
MD5: 24a483c962091218ca872a52b7f3af91
File size: 42496 bytes

Created files:

C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-0069\mmails2.exe – Trojan Barys

Trojan Barys created autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Taskman: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-0069\mmails2.exe
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\emails5: C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-0069\mmails2.exe
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell: explorer.exe,C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-0069\mmails2.exe

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images