TROJ_FRAUDLO.LO

By GoldSparrow in Trojans

Translate To:

TROJ_FRAUDLO.LO is a virus that performs distributed denial of service (DDoS) attacks. It arrives on a computer via spam email attachment, and once it has entered a computer and become active, TROJ_FRAUDLO.LO attempts to connect to specific IP addresses in order to open a backdoor for an unauthorized remote user to gain access to the system. This may lead to identity theft. TROJ_FRAUDLO.LO also downloads additional malware onto the compromised machine, while trying to replace the master boot record and searching for files with certain extensions, in order to delete the ones it cannot open or that are zero bytes in size.

File System Details

TROJ_FRAUDLO.LO may create the following file(s):

Expand All | Collapse All

#	File Name	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	%User Temp%\expand32xp.dll
Name: %User Temp%\expand32xp.dll Type: Dynamic link library
2.	%User Temp%\wmsdk64_32.exe
Name: %User Temp%\wmsdk64_32.exe Type: Executable File
3.	%User Temp%\wscsvc32.exe
Name: %User Temp%\wscsvc32.exe Type: Executable File
4.	%User Temp%\topwesitjh
Name: %User Temp%\topwesitjh
5.	%Favorites%\_favdata.dat
Name: %Favorites%\_favdata.dat Type: Data file

Registry Details

TROJ_FRAUDLO.LO may create the following registry entry or registry entries:

HKEY..\..\..\..{RegistryKeys}

wmsdk64_32.exe = "%Temp%\wmsdk64_32.exe"

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

TROJ_FRAUDLO.LO

File System Details

Registry Details

Submit Comment

Trending

Rzfu Ransomware

'YouPorn' Email Scam

Rzkd Ransomware

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen