Home » Virus List
Trojan.Win32.Generic
Risk Level 1
 
File Size : 2707456 KB
File Type : Portable Executable file
File Name

install.exe

MD5

7516c9810867a33c21e80acac0a9b2a1

SHA1

a23c21abab0afa3a1d0ae727f1666c303fd0b058

SHA256

484349ea079bd611210283171441c46fe9461fb93f9ec7b7ce

General information:

* File name: C:\Users\vmware\Desktop\malware\Vir.exe

Changes to registry :

* No changes

Changes to filesystem:

* Modifies file C:\Boot\memtest.exe
* Modifies file C:\bsa\LANG\Translator.exe
* Modifies file C:\bsa\MAEC\bsa_to_maec.exe
* Modifies file C:\bsa\PCAP\NetworkMinerConsole.exe
* Creates file C:\Skunk.exe
* Creates file C:\WINDOWS\system32\Skunk.exe
* Creates file C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Skunk.exe
* Creates file C:\Users\vmware\AppData\Local\Temp\~DF504BB78503E6E748.TMP

Network services:

* No changes

Process/window/string information:

* Gets system default language ID.
* Gets input locale identifiers.
* Checks for debuggers.
* Creates an event named "OleDfRoot93856C8FF9FE5B67".
* Contains string FTP information stealer ("FlashFXP")
* Contains string Traces of AutoStart registry key ("Software\Microsoft\Windows\CurrentVersion\Run")

Additional Information:

How To Remove install.exe

1.Download Sniper Antivirus
2.Install the exe file on your system.
3.Full Scan your Computer OR Folder where install.exe located.
4.Once the scan is finished, you’ll get the message “scan is complete”.
Click OK button to get the results.
5.Then Delete the threat from table.

Top