FGEXEC.EXE – Worm AMN

Worm No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

FGEXEC.EXE – Worm AMN removal

FileMD5Virus Alias
FGEXEC.EXE a761bea93c900044b9e67364f3c7b06f Worm AMN
FGEXEC.EXE a761bea93c900044b9e67364f3c7b06f Trojan Generic
FGEXEC.EXE a761bea93c900044b9e67364f3c7b06f Trojan Xema
FGEXEC.EXE a761bea93c900044b9e67364f3c7b06f Trojan Agent
FGEXEC.EXE a761bea93c900044b9e67364f3c7b06f Trojan Banker

FGEXEC.EXE size: 49152 bytes
FGEXEC.EXE hash: A761BEA93C900044B9E67364F3C7B06F

Created files:

%TEMP%\cachedump.exe
%TEMP%\fgexec.exe
%TEMP%\lsaext.dll
%TEMP%\pstgdump.exe
%TEMP%\pwdump.exe
%TEMP%\pwservice.exe

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\CacheDump\Type: 10000000
HKLM\System\CurrentControlSet\Services\CacheDump\Start: 03000000
HKLM\System\CurrentControlSet\Services\CacheDump\DisplayName: CacheDump
HKLM\System\CurrentControlSet\Services\CacheDump\ImagePath: %TEMP%\cachedump.exe -s

Detected by UnHackMe:

FGEXEC.EXE
Default location: %TEMP%\FGEXEC.EXE

Dropper information:
MD5: b6c171adc5cffb3f6386778701bd1ba5
File size: 573440 bytes

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images