Trojan-Ransom Gimemo – 46d8f0.sys – ce7024013553bf577f116378e04b59c3

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan-Ransom Gimemo
Also known as: Trojan Generic, Fake Antivirus Winwebsec
SHA256: b73cc04b1f90eb374bef0553c309a56994f5fe6d5db785b148867481bb766d60
SHA1: 4e06cf266da90d0ae675fc7cacb4e153499e83d1
MD5: ce7024013553bf577f116378e04b59c3
File size: 624128 bytes

Created files:

%SysDir%\drivers\46d8f0.sys – Trojan-Ransom Gimemo
%Local AppData%\5197ad5b916b5d4c.exe – Trojan-Ransom Gimemo

Trojan-Ransom Gimemo created autostart registry keys:

HKLM\System\CurrentControlSet\Services\46d8f0\Type: 01000000
HKLM\System\CurrentControlSet\Services\46d8f0\Start: 01000000
HKLM\System\CurrentControlSet\Services\46d8f0\DisplayName: 5197ad5b916b5d4c.exe
HKLM\System\CurrentControlSet\Services\46d8f0\ImagePath: %WinDir%\System32\drivers\46d8f0.sys
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\5197ad5b916b5d4c.exe: %Local AppData%\5197ad5b916b5d4c.exe

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images