Trojan Graftor – WerPingGood.exe – d4a6e2eb91cc63b09eefb163a815a768

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Graftor
Also known as: Worm AMN, Backdoor Ping
SHA256: 3774b147a89ea6b544a41fb961eaa9ff46d1fd10f60a46c3e57b3447289ea6ba
SHA1: 6443b5b216d6bd39612a6a0db76a14ac3b6f2378
MD5: d4a6e2eb91cc63b09eefb163a815a768
File size: 599584 bytes

Created files:

%AppData%\WerPingGood\WerPingGood.exe – Trojan Graftor
%AppData%\WerPingGood\WerPingHelper.dll – Trojan Graftor
%AppData%\WerPingGood\WPUninst.exe – Trojan Graftor
%AppData%\WerPingGood\WPUpdate.exe – Trojan Graftor

Trojan Graftor created autostart registry keys:

HKLM\Software\Classes\CLSID\{114EB2A5-9A65-4FC2-A6E3-9949666EBA72}\InprocServer32 : %AppData%\WerPingGood\WerPingHelper.dll
HKLM\Software\Classes\CLSID\{2B600A69-BE41-40B9-A0D4-B325DB58C882}\InprocServer32 : %AppData%\WerPingGood\WerPingHelper.dll
HKLM\Software\Classes\CLSID\{4FBA5B59-B50F-459D-B86B-2745BFE7B26D}\InprocServer32 : %AppData%\WerPingGood\WerPingHelper.dll

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images