Worm Palevo – ntldr.SYS – 00a2a70033392b3ef55c11be754bbde7

Worm No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Worm Palevo
Also known as: Trojan Generic, Backdoor Farfli
SHA256: b902ddaf96e9899d57c7b1343757f3f8fc13aabe6d8da3a8672d99c1212b0ae6
SHA1: 1f6f12897ce7f8ecdd4e6e5f7c875425ddf700f4
MD5: 00a2a70033392b3ef55c11be754bbde7
File size: 187574 bytes

Created files:

C:\ntldr.SYS – Worm Palevo
%Program Files%\%Program Files%\Cest.bat – Worm Palevo
%Program Files%\%Program Files%\laass.exe – Worm Palevo
%Program Files%\%Program Files%\Wdcp.dll – Worm Palevo
C:\windows\best.bat – Worm Palevo

Worm Palevo created autostart registry keys:

HKLM\System\CurrentControlSet\Services\Winsock\InstallModule: 00A2A70033392B3EF55C11BE754BBDE7.EXE
HKLM\System\CurrentControlSet\Services\Winsock\ConnectGroup: Default
HKLM\System\CurrentControlSet\Services\Winsock\MyVerSion: 2012

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images