Backdoor:Win32/Fynloski.A Description

Backdoor:Win32/Fynloski.A is a Windows platform backdoor Trojan that can secretly infiltrate a targeted machine. Once inside a machine, Backdoor:Win32/Fynloski.A will give a remote attacker access and control over it, putting a victim's private information at risk. Backdoor:Win32/Fynloski.A may also download additional malware which will deteriorate the performance of a compromised system and make it vulnerable to other attacks.

Aliases: Trj/OCJ.E [Panda], Generic8_c.DBX [AVG], W32/Autoit.BBW!tr [Fortinet], a variant of Win32/Injector.Autoit.IM, W32/Backdoor.SBVU-0279, Win32.Troj.AutoIt.b.(kcloud), Trojan.Win32.Autoit.AMN (A), BDS/Fynloski.A.493 [AntiVir], Trojan.PWS.Skyper.21 [DrWeb], Trojan.Win32.Autoit.bbw [Kaspersky], AutoIt:Injector-BI [Avast], Troj_Generic.KVHHU, Artemis!D5D47266A426 [McAfee], Trojan.Generic.9021691 and TROJ_GEN.RCBOCAC [TrendMicro].

Technical Information

File System Details

Backdoor:Win32/Fynloski.A creates the following file(s):
# File Name Size MD5 Detection Count
1 %APPDATA%vbc.exe 728,064 461be3d4b2730a280756368d02a1d4c7 9
2 %USERPROFILE%\My Documents\Adobe\CS6\help.exe 3,040,256 9bd73e9fe3e66ebb75c8f4a8667fab9a 6
3 %APPDATA%Windows Update.exe 833,024 27c3dab4bee42ee865d7ecf39ca779f4 6
4 %APPDATA%\Java\Java Update\jusched.exe 1,317,752 d5d47266a426a6aafc42b44e63c2f87b 6
5 %APPDATA%JadencidePasswordCracker.exe 1,073,664 d1210ac7f435f88961b6ce74ecbbbc66 4
6 %SystemDrive%\Users\Cristian\AppData\Roaming\Coverage life out.exe 1,248,256 139610d9782faed894dc1241349a542e 4
7 %APPDATA%test.exe 712,704 47c66a5fd3dd2775090ef4f55a851e04 4
8 %APPDATA%taskmanagsystem.exe 6,291,456 a753e59cc25f122411d32d56f12e0e2c 3
9 %WINDIR%\system32\DCSCMIN\IMDCSC.exe 644,096 cd92399d9ce8715c54d6f0a9e23caaa2 3
10 %APPDATA%\AppleVerification\AppleV.exe 628,736 293041989a016e0f33c383493171f20e 3
11 %APPDATA%\WinDefender\windefender.exe 1,801,728 d881cd21ad7a570a7cb80e153f927250 3
12 %APPDATA%\dwin\wdinder.exe 1,129,984 4da04a0babe252f46dc8c9471c659254 3
13 %APPDATA%Microsoft\System\Services\18.exe 1,195,520 fa1c6bda77d31b8d8607b1e77df89077 3
14 %USERPROFILE%\Mijn documenten\Adobe\CS6\Ccg.exe 1,351,680 691b1a0d6ef68fe060c1b2be552cbbdc 2
15 %APPDATA%Vitalsystems.exe 817,664 0c2e7a13413786803195df3383f1bbca 2
16 %TEMP%tmpF612.tmp.exe 535,040 891c354cdbccdde7f6e5d59b3a05dc50 2
17 %ALLUSERSPROFILE%\\jwupdater\jwupdate.exe 1,495,040 d1fbad7605d69696cc3d903240d28876 2
18 %APPDATA%SystemUpdate.exe 1,064,960 ba1eb267622881fa2883728ac5edc754 2
19 %TEMP%winini.exe 464,896 cc9097e80bf4972da4ea6d709b5f9e5d 2
20 %APPDATA%\MgQVzlibwt\s5kkVFlCRi.exe 727,040 6ce3838ae3afb2b5646ea2adde96a2df 2
21 %APPDATA%\windows\regedit.exe 719,360 22c59d58c72d08006570845ded03671a 2
22 %WINDIR%\Windupdt\Googleupdate.exe 518,722 7aaf4ebedd9436c5ad4a7eae64ddbad5 2
23 %APPDATA%233361321524196.exe 952,946 107c98797fcdff6c1e5bdc8ce9a25631 2
24 %TEMP%vfnws.exe 408,064 922217c73db3cedb750ae07995ffbc4f 1
25 %APPDATA%SVwNpWEBNiUdJyDLsz.exe 2,002,432 7cde421e91546994462a86eb0119d250 1
26 %TEMP%0019d3d1.exe 752,640 02d6d5629c636ec287a05d43025cb28d 1
27 %TEMP%panmap.exe 723,456 b3c097ded102c7c1f3b3998a7f28c08d 1
More files

Site Disclaimer is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.

HTML is not allowed.