Trojan Graftor – ksuser.dll – 9f36dcd9debbdafb7f11634e93b55bc1

Alex NightWatcher

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Graftor
Also known as: Backdoor PcClien, Trojan OnLineGames
SHA256: 3ecb7263fc1827f0e69ea5b921bcbc86bca11961f7a79c69b7f2ad25808875c2
SHA1: a3c88f5468ef0f89e5b139d8d7ad0270d130d6e1
MD5: 9f36dcd9debbdafb7f11634e93b55bc1
File size: 51200 bytes

Created files:

%SysDir%\dllcache\ksuser.dll – Trojan Graftor
%SysDir%\sysapp2.dll – Trojan Graftor
%SysDir%\yuksuser.dll – Trojan Graftor
%SysDir%\yumidimap.dll – Trojan Graftor

Trojan Graftor created autostart registry keys:

HKLM\System\CurrentControlSet\Control\Keyboard Layouts\E0200804\Ime File: CHINASOUGOU.IME
HKLM\System\CurrentControlSet\Control\Keyboard Layouts\E0200804\Layout Text: ????(???)???
HKLM\System\CurrentControlSet\Control\Keyboard Layouts\E0200804\Layout File: kbdus.dll
HKLM\System\CurrentControlSet\Services\cryptsvc\Start: 04000000

Leave a Reply Cancel reply

You must be logged in to post a comment.