Trojan Graftor – ksuser.dll – c844c05eebf2f74fd230e50cffb0d2bb

August 26, 2012

Alex NightWatcher

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Graftor
Also known as: Trojan Generic, Trojan Eldorado
SHA256: 52d3ef011b4f675197f2c17a9e30a51e9b8297261164fd972b2c6c3abf8b7551
SHA1: 2f9c56ca21b7c776ff039d0f18e1d55f697bf07e
MD5: c844c05eebf2f74fd230e50cffb0d2bb
File size: 52224 bytes

Created files:

%SysDir%\dllcache\ksuser.dll – Trojan Graftor
%SysDir%\sysapp1.dll – Trojan Graftor
%SysDir%\yuksuser.dll – Trojan Graftor
%SysDir%\yumidimap.dll – Trojan Graftor

Trojan Graftor created autostart registry keys:

HKLM\System\CurrentControlSet\Control\Keyboard Layouts\E0200804\Ime File: CHINASOUGOU.IME
HKLM\System\CurrentControlSet\Control\Keyboard Layouts\E0200804\Layout Text: ????(???)???
HKLM\System\CurrentControlSet\Control\Keyboard Layouts\E0200804\Layout File: kbdus.dll
HKLM\System\CurrentControlSet\Services\cryptsvc\Start: 04000000

Leave a Reply Cancel reply

You must be logged in to post a comment.