Worm Vobfus – 093780d164024d91c48e10a77a2b4d96

Worm No Comments

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.

Worm Vobfus
Also known as: Trojan Crypt, Trojan-Dropper Dorifel
SHA256: 1d1291d6369c62fcb0881a37ac92f29b16191779467e68093dbc00a826231e9b
SHA1: 6ac1acf16c9159038075f863e8a0aa50a159bb5b
MD5: 093780d164024d91c48e10a77a2b4d96
File size: 159744 bytes

Created files:

%SysDir%\macvzeuo.dll – Worm Vobfus
%UserProfile%\1shb.exe – Worm Vobfus
%UserProfile%\3shb.exe – Worm Vobfus
%UserProfile%\4shb.exe – Worm Vobfus
%UserProfile%\cumir.com – Worm Vobfus
%UserProfile%\kiiuf.exe – Worm Vobfus
%UserProfile%\start1.exe – Worm Vobfus
%UserProfile%\ygcim.exe – Worm Vobfus
%UserProfile%\zshb.exe – Worm Vobfus

Worm Vobfus created autostart registry keys:

user\current_classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InprocServer32\ThreadingModel: Both
user\current_classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InprocServer32 : %Local AppData%\{ae229ccd-6a28-e4e8-8a47-3737ee4e0fed}\n.

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images