Trojan Delf – scvchost.exe – 1c7b8a51ec3d1782427fca4f7c3c4d6a

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Delf
Also known as: Backdoor Tordev, Trojan Agent
SHA256: 5150af808ec9bf17a4b88ac46d8eda99a4ad37eef72e4d137f9e3fddd18e1af7
SHA1: 65b6d6bd2d55988e02d755cd8aebe35ff453fef6
MD5: 1c7b8a51ec3d1782427fca4f7c3c4d6a
File size: 2036736 bytes

Created files:

C:\updatesecurity\scvchost.exe – Trojan Delf
%Temp%\NOTEPAD V2.EXE – Trojan Delf
%Temp%\tmpcmd.bat – Trojan Delf
%Personal%\MSDCSC\msdcsc.exe – Trojan Delf

Trojan Delf created autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\UserInit: %WinDir%\System32\userinit.exe,C:\updatesecurity\scvchost.exe,%Personal%\MSDCSC\msdcsc.exe
HKLM\System\CurrentControlSet\Services\wscsvc\Start: 04000000
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\MicroUpdate: %Personal%\MSDCSC\msdcsc.exe

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images