WMSUPDATE.EXE – Trojan Banker

Trojan No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

WMSUPDATE.EXE – Trojan Banker removal

FileMD5Virus Alias
WMSUPDATE.EXE 0d32c6a38e16198cf9ee9ec37f567f47 Trojan Banker
WMSUPDATE.EXE 0d32c6a38e16198cf9ee9ec37f567f47 Trojan Generic
WMSUPDATE.EXE 0d32c6a38e16198cf9ee9ec37f567f47 Trojan Downloader
WMSUPDATE.EXE 0d32c6a38e16198cf9ee9ec37f567f47 Trojan CI
WMSUPDATE.EXE 0d32c6a38e16198cf9ee9ec37f567f47 Trojan Agent
WMSUPDATE.EXE 0d32c6a38e16198cf9ee9ec37f567f47 Trojan Banload

WMSUPDATE.EXE size: 1795584 bytes
WMSUPDATE.EXE hash: 0D32C6A38E16198CF9EE9EC37F567F47

Created files:

%TEMP%\Cprepert.tl
%TEMP%\SwMEST
%TEMP%\WmsUpdate.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\RUN\laonkbdicgcagnhj: %TEMP%\WmsUpdate.exe

Detected by UnHackMe:

WMSUPDATE.EXE
Default location: %TEMP%\WMSUPDATE.EXE

Dropper information:
MD5: 0d32c6a38e16198cf9ee9ec37f567f47
File size: 1795584 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images