WINTOOLSE.EXE – Trojan Artemis

September 15, 2013

Alex NightWatcher

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

WINTOOLSE.EXE – Trojan Artemis removal

File	MD5	Virus Alias
WINTOOLSE.EXE	c14bb7d6e0bee0e289af6769f75cd1dc	Trojan Artemis
WINTOOLSE.EXE	c14bb7d6e0bee0e289af6769f75cd1dc	Trojan Generic
WINTOOLSE.EXE	c14bb7d6e0bee0e289af6769f75cd1dc	Trojan Delf

WINTOOLSE.EXE size: 40960 bytes
WINTOOLSE.EXE hash: C14BB7D6E0BEE0E289AF6769F75CD1DC

Created files:

%TEMP%\76DBB2.dmp
%WinDir%\wintoolse.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\Sysmqsgwers32\Type: 10010000
HKLM\System\CurrentControlSet\Services\Sysmqsgwers32\Start: 02000000
HKLM\System\CurrentControlSet\Services\Sysmqsgwers32\DisplayName: Sysmqsgwers32
HKLM\System\CurrentControlSet\Services\Sysmqsgwers32\ImagePath: %WinDir%\wintoolse.exe

Detected by UnHackMe:

WINTOOLSE.EXE
Default location: %WinDir%\WINTOOLSE.EXE

Dropper information:
MD5: c14bb7d6e0bee0e289af6769f75cd1dc
File size: 40960 bytes

Leave a Reply Cancel reply

You must be logged in to post a comment.