Worm Brontok – norBtok.exe – d145cdf5063e3f1a79380d38fc3724fc

Worm No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Worm Brontok
SHA256: 77dea0aaae1f7a15dc674a7f20807ff45a04538f4851176a36b1b6ac7078b6e7
SHA1: 83521c64dd7e05c398945d38302c5591eed45daf
MD5: d145cdf5063e3f1a79380d38fc3724fc
File size: 400631 bytes

Created files:

%WinDir%\INF\norBtok.exe – Worm Brontok
%SysDir%\3D Animation.scr – Worm Brontok
%Local AppData%\csrss.exe – Worm Brontok
%Local AppData%\inetinfo.exe – Worm Brontok
%Local AppData%\lsass.exe – Worm Brontok
%Local AppData%\services.exe – Worm Brontok
%Local AppData%\smss.exe – Worm Brontok
%Local AppData%\winlogon.exe – Worm Brontok
%UserProfile%\Templates\A.kotnorB.com – Worm Brontok

Worm Brontok created autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\run\Bron-Spizaetus: “%WinDir%\INF\norBtok.exe”
HKCU\Software\Microsoft\Windows\CurrentVersion\run\Tok-Cirrhatus: “%Local AppData%\smss.exe”

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images