Trojan Kazy – syshost.exe – dc56bc075131bc19d3c0819feeb79c28

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Kazy
Also known as: Trojan Generic, Trojan Crypt
SHA256: efbb5b6a8d118e8961c35374b48756da403f0f0c76b03f619f4418b7611e8f41
SHA1: 1a77733584defdcdf7d8b4f01305a7934627894e
MD5: dc56bc075131bc19d3c0819feeb79c28
File size: 296960 bytes

Created files:

%WinDir%\Installer\{C6854B20-177E-9009-F417-FE69D3C682B1}\syshost.exe – Trojan Kazy
%SysDir%\drivers\1fd108.sys – Trojan Kazy

Trojan Kazy created autostart registry keys:

HKLM\System\CurrentControlSet\Services\1fd108\Type: 01000000
HKLM\System\CurrentControlSet\Services\1fd108\Start: 01000000
HKLM\System\CurrentControlSet\Services\1fd108\DisplayName: syshost.exe
HKLM\System\CurrentControlSet\Services\1fd108\ImagePath: %WinDir%\System32\drivers\1fd108.sys
HKLM\System\CurrentControlSet\Services\syshost32\Type: 10000000
HKLM\System\CurrentControlSet\Services\syshost32\Start: 02000000
HKLM\System\CurrentControlSet\Services\syshost32\ImagePath: “%WinDir%\Installer\{C6854B20-177E-9009-F417-FE69D3C682B1}\syshost.exe” /service
HKLM\System\CurrentControlSet\Services\syshost32\a9ae6b17c5a5d8d6: D7FAB61A591D2058

Comments

Loading... Logging you in...
Dashboard | Edit profile | Logout
  • Logged in as
Login or signup now to comment.
There are no comments posted yet. Be the first one!

Comments by

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images