« WORM_RANSOM.FD
Sus.Behav »

Trojan.Busky

No Comments
Domesticus By Domesticus in Trojans | 22 views
Rate it:
1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)
Loading ... Loading ...

Trojan.Busky Description

Trojan.Busky is a Trojan Downloader that is further identified as a Browser Helper Object. Trojan.Busky typically enters the computer system via dubious scripts, embedded in JavaScript or VBS. Trojan.Busky (also referred to as Trojan.Busky.B, Trojan.Busky.EI, Trojan.Busky.O, and Trojan.Busky.EC) usually causes problems like slow computer performance, obessive pop-up windows appearing on the computer continuously, and new desktop shortcuts or a change in homepage.

Type: Trojans

Automatic Detection of Trojan.Busky

 
 

Download SpyHunter’s Detection Scanner
to Detect Trojan.Busky.

 
 

Trojan.Busky Technical Report

As new Trojan.Busky details are reported by our customers and findings from our Threat Research Center, we will update this section.

The following Trojan.Busky files with its MD5s were created in the system:

File Name File Size MD5
kpwzqnoj.exe 53760 d8e9d4997f0eb451eb52fd1343bf0072
pchtls32.exe 262144 4019ba5b53c55abb588f0dcd8ee150c7
pqpwvunu.exe 271872 698c6b6bb808231ca67daf7d4a7e6259
cxknudah.exe 40960 4a67fa632c53e14ac9735a87fc7bc4dc
qbkfofml.exe 106496 3e6251d56fba8165149fbb5f945cd793

Trojan.Busky has typically the following processes in memory:

  • epajslul.exe
  • pchyjqtw.exe
  • gjctitkx.exe
  • vmtmhuhc.exe
  • pqrspmlq.exe
  • efkpgpyf.exe
  • rgbchirk.exe
  • revkxadi.exe
  • zmlonwlu.exe
  • nsdsnajk.exe
  • ejyjmlwr.exe
  • uhybkxen.exe
  • jojmrgdu.exe
  • inudylen.exe
  • sjelcvad.exe
  • fqjetcxm.exe
  • hkxqdwbq.exe
  • repsrylq.exe
  • zojipsfi.exe
  • tejcxabw.exe
  • pgrabiva.exe
  • wjalwrgl.exe
  • ofctitup.exe
  • tqnknmfw.exe
  • nctqlyds.exe
  • mharsxyt.exe

Trojan.Busky creates the following registry entries:

  • RUNNING PROGRAM\epajslul.exe
  • HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ zsfrnuoh
  • RUNNING PROGRAM\gjctitkx.exe
  • RUNNING PROGRAM\vmtmhuhc.exe
  • RUNNING PROGRAM\pqrspmlq.exe
  • RUNNING PROGRAM\efkpgpyf.exe
  • RUNNING PROGRAM\rgbchirk.exe
  • RUNNING PROGRAM\revkxadi.exe
  • RUNNING PROGRAM\zmlonwlu.exe
  • RUNNING PROGRAM\nsdsnajk.exe
  • RUNNING PROGRAM\ejyjmlwr.exe
  • RUNNING PROGRAM\uhybkxen.exe
  • HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ 9294G80P8A
  • RUNNING PROGRAM\inudylen.exe
  • RUNNING PROGRAM\sjelcvad.exe
  • RUNNING PROGRAM\fqjetcxm.exe
  • RUNNING PROGRAM\hkxqdwbq.exe
  • RUNNING PROGRAM\repsrylq.exe
  • RUNNING PROGRAM\zojipsfi.exe
  • RUNNING PROGRAM\tejcxabw.exe
  • RUNNING PROGRAM\pgrabiva.exe
  • RUNNING PROGRAM\wjalwrgl.exe
  • RUNNING PROGRAM\ofctitup.exe
  • HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ OJtGEKd5UE
  • HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ iuggasyw
  • HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\ yvmoghns

Important Article Disclaimer

article disclaimer
ESG Support Center

Share and Enjoy: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Furl
  • StumbleUpon
  • Technorati
  • YahooMyWeb
This entry was posted on 06/26/09 and is filed under Trojans. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Comment

Note: Abusive comments are not allowed. Please do not post comments regarding technical support issues. ESG customers that have issues with SpyHunter should open a customer support ticket.

*
To prove you're a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.
Click to hear an audio file of the anti-spam word

Top Malware

Recommended Products

Featured Videos

Poll

How much money have you spent trying to rid your PC of spyware?
View Results

Recent Articles

Top FAQs


Archives

Home Sitemap RSS Feed Privacy Policy End User License Agreement Copyright 2003-2009. Enigma Software Group USA, LLC. All Rights Reserved.