Trojan Kazy – birafigl.exe – 3e4932eb7f2fb08dae28e72105f01ac3

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Kazy
Also known as: Trojan DNAScan, Trojan CI
SHA256: 44f63bfa840501289251954c8836857cc324abc2674dbdbf577dbf68329d7c3f
SHA1: 3aaf86d3a711b59224f01af0346cc44f4b33ea62
MD5: 3e4932eb7f2fb08dae28e72105f01ac3
File size: 93576 bytes

Created files:

%Local AppData%\sfdnuiwu\birafigl.exe – Trojan Kazy
%Temp%\iwshffyx.sys – Trojan Kazy
%Temp%\sqpuhkir.exe – Trojan Kazy
%Startup%\birafigl.exe – Trojan Kazy

Trojan Kazy created autostart registry keys:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit: %WinDir%\System32\userinit.exe,,%Local AppData%\sfdnuiwu\birafigl.exe
HKLM\System\CurrentControlSet\Services\Micorsoft Windows Service\Type: 01000000
HKLM\System\CurrentControlSet\Services\Micorsoft Windows Service\Start: 03000000
HKLM\System\CurrentControlSet\Services\Micorsoft Windows Service\DisplayName: Micorsoft Windows Service
HKLM\System\CurrentControlSet\Services\Micorsoft Windows Service\ImagePath: %Temp%\iwshffyx.sys
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\BirAfigl: %Local AppData%\sfdnuiwu\birafigl.exe

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images