Trojan Graftor – ksuser.dll – 24fab237b4e9913583bad5fd3b858a42

Alex NightWatcher

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Graftor
Also known as: Backdoor PcClien, Trojan OnLineGames
SHA256: 33b83f7da1c7431762bf57c420f044b0b731ffa0c4428cbe6d51250737a6b602
SHA1: 59b6e37e534361ef19af642ffaae1915677247f0
MD5: 24fab237b4e9913583bad5fd3b858a42
File size: 52224 bytes

Created files:

%SysDir%\dllcache\ksuser.dll – Trojan Graftor
%SysDir%\sysapp2.dll – Trojan Graftor
%SysDir%\yuksuser.dll – Trojan Graftor
%SysDir%\yumidimap.dll – Trojan Graftor

Trojan Graftor created autostart registry keys:

HKLM\System\CurrentControlSet\Control\Keyboard Layouts\E0200804\Ime File: CHINASOUGOU.IME
HKLM\System\CurrentControlSet\Control\Keyboard Layouts\E0200804\Layout Text: ????(???)???
HKLM\System\CurrentControlSet\Control\Keyboard Layouts\E0200804\Layout File: kbdus.dll
HKLM\System\CurrentControlSet\Services\cryptsvc\Start: 04000000

Leave a Reply Cancel reply

You must be logged in to post a comment.