Worm Brontok – eksplorasi.exe – 29706176b5550f0fc35da0eed08c35aa

Worm No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Worm Brontok
Also known as: Trojan Agent
SHA256: cac5bc25e94989ee18f48903f4675151b802f013d1365f174a84f0468918f168
SHA1: 69f8ba6e92f08a1bbdd64a07041ff349f42f06df
MD5: 29706176b5550f0fc35da0eed08c35aa
File size: 42097 bytes

Created files:

%WinDir%\eksplorasi.exe – Worm Brontok
%WinDir%\ShellNew\bronstab.exe – Worm Brontok
%Local AppData%\csrss.exe – Worm Brontok
%Local AppData%\inetinfo.exe – Worm Brontok
%Local AppData%\lsass.exe – Worm Brontok
%Local AppData%\services.exe – Worm Brontok
%Local AppData%\smss.exe – Worm Brontok

Worm Brontok created autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\run\Bron-Spizaetus: “%WinDir%\ShellNew\bronstab.exe”
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell: Explorer.exe “%WinDir%\eksplorasi.exe”
HKCU\Software\Microsoft\Windows\CurrentVersion\run\Tok-Cirrhatus: “%Local AppData%\smss.exe”

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images