Trojan Krap – 352c4654.sys – e65dc4b919470ee7c31d14102c4f9929

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan Krap
Also known as: Trojan OnLineGames, Worm Autorun
SHA256: b80f1289c824bd6082115f4b88fc554fa3959a5bc1933f757858e757ed27d57e
SHA1: aaeeb4422ae63f9a36c5b97f85b043c3656f4764
MD5: e65dc4b919470ee7c31d14102c4f9929
File size: 505408 bytes

Created files:

%SysDir%\drivers\352c4654.sys – Trojan Krap
%SysDir%\drivers\498773d2.sys – Trojan Krap
%SysDir%\poorcd.dll – Trojan Krap
%SysDir%\wshtcpcd.dll – Trojan Krap
%Temp%\BuA.dll – Trojan Krap
%Temp%\Coor.bat – Trojan Krap
%Temp%\Is9ue.dll – Trojan Krap

Trojan Krap created autostart registry keys:

HKLM\Software\Classes\CLSID\{6E51C402-5F6C-4F6C-8296-3345C441F1FE}\InprocServer32 : %WinDir%\System32\poorcd.dll
HKLM\System\CurrentControlSet\Services\352c4654\Type: 01000000
HKLM\System\CurrentControlSet\Services\352c4654\Start: 01000000
HKLM\System\CurrentControlSet\Services\352c4654\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\352c4654\DisplayName: 352c4654
HKLM\System\CurrentControlSet\Services\352c4654\ImagePath: \??\%WinDir%\System32\drivers\352c4654.sys
HKLM\System\CurrentControlSet\Services\498773d2\Type: 01000000
HKLM\System\CurrentControlSet\Services\498773d2\Start: 01000000
HKLM\System\CurrentControlSet\Services\498773d2\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\498773d2\DisplayName: 498773d2
HKLM\System\CurrentControlSet\Services\498773d2\ImagePath: \??\%WinDir%\System32\drivers\498773d2.sys

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images