Worm Autorun – winlogon.exe – f8274c1aa266d03394f4470d594be93d

Worm No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Worm Autorun
Also known as: Trojan Delf, Trojan Agent
SHA256: ffc5252b3a1c23244b55a7ed141f591a67501a81a3e7991f61bc30fc6ccf8e6a
SHA1: 6f796036ded2f6d45cfc8e5f8e8220a9a34fa2aa
MD5: f8274c1aa266d03394f4470d594be93d
File size: 296448 bytes

Created files:

C:\directory\CyberGate\winlogon\winlogon.exe – Worm Autorun

Worm Autorun created autostart registry keys:

HKLM\Software\Microsoft\Active Setup\Installed Components\{YP64M82K-PY3A-1J7D-071P-M7817TPQE5VT}\StubPath: c:\directory\CyberGate\winlogon\winlogon.exe Restart
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\Policies: 63003A005C006400690072006500630074006F00720079005C004300790062006500720047006100740065005C00770069006E006C006F0067006F006E005C00770069006E006C006F0067006F006E002E006500780065000000
HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\Policies: 63003A005C006400690072006500630074006F00720079005C004300790062006500720047006100740065005C00770069006E006C006F0067006F006E005C00770069006E006C006F0067006F006E002E006500780065000000

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images