Worm Brontok – norBtok.exe – 1c0aa9d732cbc2783f278a8b2bac2e21

Worm No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Worm Brontok
SHA256: 88b6e82fd7420e2910039ed62799d3197f4e4b369113131a246271c302643197
SHA1: c317f00e803e1fd8c4306b15475ba667cd3b846c
MD5: 1c0aa9d732cbc2783f278a8b2bac2e21
File size: 30208 bytes

Created files:

%WinDir%\INF\norBtok.exe – Worm Brontok
%SysDir%\3D Animation.scr – Worm Brontok
%Local AppData%\csrss.exe – Worm Brontok
%Local AppData%\inetinfo.exe – Worm Brontok
%Local AppData%\lsass.exe – Worm Brontok
%Local AppData%\services.exe – Worm Brontok
%Local AppData%\smss.exe – Worm Brontok
%Local AppData%\winlogon.exe – Worm Brontok
%UserProfile%\Templates\A.kotnorB.com – Worm Brontok

Worm Brontok created autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\run\Bron-Spizaetus: “%WinDir%\INF\norBtok.exe”
HKCU\Software\Microsoft\Windows\CurrentVersion\run\Tok-Cirrhatus: “%Local AppData%\smss.exe”

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images