Trojan-Ransom Winlock – 809a3d5e1b1aac412cf97b942e60ae0b

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Trojan-Ransom Winlock
Also known as: Virus Vbcrypt, Trojan Agent
SHA256: 9dddb6ae08f40801ecdbd7cbc8fe9febd07923abb8434811a46c3caebdc6b42f
SHA1: b1d4f1511229bb36a6fa438c033ddb636e2c3360
MD5: 809a3d5e1b1aac412cf97b942e60ae0b
File size: 117993 bytes

Created files:

%AppData%\23ae6.exe – Trojan-Ransom Winlock
%AppData%\panda.dll – Trojan-Ransom Winlock

Trojan-Ransom Winlock created autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Panda Media Booster : “%AppData%\23ae6.exe”
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell: “%AppData%\23ae6.exe”
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Panda Media Booster : “%AppData%\23ae6.exe”
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell: “%AppData%\23ae6.exe”

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images