DESTRUCTION.SCR – Worm Autorun

Worm No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

DESTRUCTION.SCR – Worm Autorun removal

FileMD5Virus Alias
DESTRUCTION.SCR 3b8f4679894b1a04c9d93834c2c09e64 Worm Autorun
DESTRUCTION.SCR 3b8f4679894b1a04c9d93834c2c09e64 Trojan SuspiciousFile
DESTRUCTION.SCR 3b8f4679894b1a04c9d93834c2c09e64 Trojan Hllw
DESTRUCTION.SCR 3b8f4679894b1a04c9d93834c2c09e64 Worm Brontok
DESTRUCTION.SCR 3b8f4679894b1a04c9d93834c2c09e64 Trojan Agent
DESTRUCTION.SCR 3b8f4679894b1a04c9d93834c2c09e64 Trojan Crypt

DESTRUCTION.SCR size: 71680 bytes
DESTRUCTION.SCR hash: 3B8F4679894B1A04C9D93834C2C09E64

Created files:

C:\Black Hole.exe
%WinDir%\Black Hole.exe
%WinDir%\msvbvm60.dll
%UserProfile%\Local Settings\Application Data\WINDOWS\CSRSS.EXE
%UserProfile%\Local Settings\Application Data\WINDOWS\LSASS.EXE
%UserProfile%\Local Settings\Application Data\WINDOWS\SERVICES.EXE
%UserProfile%\Local Settings\Application Data\WINDOWS\SMSS.EXE
%UserProfile%\Local Settings\Application Data\WINDOWS\WINLOGON.EXE
%SysDir%\Destruction.scr
%SysDir%\Lubang Hitam.exe
%SysDir%\msvbvm60.dll
%SysDir%\Shell.exe

Autostart registry keys:

HKCU\Control Panel\Desktop\SCRNSAVE.EXE: %WinDir%\System32\DESTRU~1.SCR
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\Black Hole: %WinDir%\Black Hole.exe

Detected by UnHackMe:

DESTRUCTION.SCR
Default location: %SYSDIR%\DESTRUCTION.SCR

Dropper information:
MD5: 0874f30a070991e8cc93673a345427f5
File size: 71680 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images