Backdoor.Graybird

By CagedTech in Backdoors

Threat Scorecard

Threat Level:	80 % (High)
Infected Computers:	691

First Seen:	July 24, 2009
Last Seen:	March 27, 2023
OS(es) Affected:	Windows

Table of Contents

Aliases

15 security vendors flagged this file as malicious.

Anti-Virus Software	Detection
AhnLab-V3	Trojan/Win32.HDC
McAfee	Artemis!A77029653238
Fortinet	W32/SPNR.04D411!tr
Ikarus	Trojan.SuspectCRC
AntiVir	BDS/Gendal.666667
McAfee	Artemis!1E2EAD782C6B
DrWeb	DLOADER.Trojan
McAfee	Artemis!068CA52A6A18
AntiVir	BDS/Graybird.A.3126
McAfee	Artemis!328B7617998D
AVG	BackDoor.Hupigon5.BXEC
Fortinet	W32/Malware_fam.NB
Ikarus	Backdoor.Win32.Hupigon
TrendMicro	TROJ_GEN.R47CEA1
BitDefender	Trojan.Generic.KDV.84986

File System Details

Backdoor.Graybird may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	keygen.exe	61208863cf3241cc639ab92e14bc6ab8	96
Name: keygen.exe MD5: 61208863cf3241cc639ab92e14bc6ab8 Size: 29.69 KB (29696 bytes) Detections: 96 Type: Executable File Path: E:\USUÁRIOS-FLORAM\BKPS-HYBSEN\HYBSEN-16_08_2010\Transfer\Augusto\PDF2Word.v3.0\PDF2Word.v3.0.Multilingual.WinALL.Keygen.Only-BRD\keygen.exe Group: Malware file Last Updated: February 25, 2023
2.	iedvvtool.dll	3a3eb99a4d0d3b8daa3fbe92d965b2b4	86
Name: iedvvtool.dll MD5: 3a3eb99a4d0d3b8daa3fbe92d965b2b4 Size: 434.87 KB (434870 bytes) Detections: 86 Type: Dynamic link library Path: C:\Program Files\Internet Explorer Group: Malware file Last Updated: December 18, 2012
3.	spoolsv.exe	fc3b1c167533a22211279738a921ddd1	72
Name: spoolsv.exe MD5: fc3b1c167533a22211279738a921ddd1 Size: 10.38 MB (10387456 bytes) Detections: 72 Type: Executable File Path: %PUBLIC%\AppData\Local\Microsoft Group: Malware file Last Updated: August 6, 2016
4.	spoolsv.exe	b4545a3f43e39b80ab12eecdd2e6f7c4	20
Name: spoolsv.exe MD5: b4545a3f43e39b80ab12eecdd2e6f7c4 Size: 5.86 MB (5861376 bytes) Detections: 20 Type: Executable File Path: %PUBLIC%\AppData\Local\Microsoft Group: Malware file Last Updated: August 6, 2016
5.	MSI7CB.tmp	877d347b9c18edaa2cfc780236f44fba	15
Name: MSI7CB.tmp MD5: 877d347b9c18edaa2cfc780236f44fba Size: 6.16 MB (6160384 bytes) Detections: 15 Type: Temporary File Path: C:\WINDOWS\Installer\MSI7CB.tmp Group: Malware file Last Updated: December 5, 2020
6.	tallylicserver.exe	068ca52a6a18d0077d1d66856a9a2d84	10
Name: tallylicserver.exe MD5: 068ca52a6a18d0077d1d66856a9a2d84 Size: 876.54 KB (876544 bytes) Detections: 10 Type: Executable File Path: f:\Tally.Developer9 Group: Malware file Last Updated: April 2, 2013
7.	avp.exe	5210d9c5bfbb9033fe5359b2e6fc53db	6
Name: avp.exe MD5: 5210d9c5bfbb9033fe5359b2e6fc53db Size: 208.61 KB (208616 bytes) Detections: 6 Type: Executable File Path: %PROGRAMFILES%\Kaspersky Lab\Kaspersky Internet Security 2009 Group: Malware file Last Updated: July 14, 2020
8.	jlo.dll	72c16f0b42492dbd9801d3fcc3c8074b	5
Name: jlo.dll MD5: 72c16f0b42492dbd9801d3fcc3c8074b Size: 28.67 KB (28672 bytes) Detections: 5 Type: Dynamic link library Path: %WINDIR%\system32 Group: Malware file Last Updated: February 1, 2011
9.	unikey.exe	d4dfc3f2f86f2026d5b0062f5f3a301c	5
Name: unikey.exe MD5: d4dfc3f2f86f2026d5b0062f5f3a301c Size: 122.88 KB (122880 bytes) Detections: 5 Type: Executable File Path: C:\Temp Group: Malware file Last Updated: July 6, 2020
10.	malware.exe	2cdb19d106db37098ec80bb276fe617d	2
Name: malware.exe MD5: 2cdb19d106db37098ec80bb276fe617d Size: 892.92 KB (892928 bytes) Detections: 2 Type: Executable File Group: Malware file Last Updated: January 20, 2022
11.	Weather.exe	8aac2d94d1c6a4f2fbfcddf21fc0258e	2
Name: Weather.exe MD5: 8aac2d94d1c6a4f2fbfcddf21fc0258e Size: 536.06 KB (536064 bytes) Detections: 2 Type: Executable File Path: %PROGRAMFILES%\Weather Group: Malware file Last Updated: June 11, 2012
12.	ctfmon.exe	318b7f3a58c0d5cfb6833c3b02b3e622	2
Name: ctfmon.exe MD5: 318b7f3a58c0d5cfb6833c3b02b3e622 Size: 28.67 KB (28672 bytes) Detections: 2 Type: Executable File Path: %WINDIR%\ime Group: Malware file Last Updated: August 15, 2011
13.	DealPlyIexplorer.dll	a503d1a09279fd29599f72dbd8d97454	2
Name: DealPlyIexplorer.dll MD5: a503d1a09279fd29599f72dbd8d97454 Size: 521.07 KB (521073 bytes) Detections: 2 Type: Dynamic link library Path: %SystemDrive%\DealPly\DealPTune Group: Malware file Last Updated: August 6, 2012
14.	spoolsv.exe	8fc94c602aee68822c1ea66a88832718	2
Name: spoolsv.exe MD5: 8fc94c602aee68822c1ea66a88832718 Size: 494.69 KB (494691 bytes) Detections: 2 Type: Executable File Path: %PUBLIC%\Flowing Group: Malware file Last Updated: August 6, 2016
15.	spoolsv.exe	954eba21cbcd2f0f8ac0ea8da05f314d	2
Name: spoolsv.exe MD5: 954eba21cbcd2f0f8ac0ea8da05f314d Size: 10.36 MB (10366976 bytes) Detections: 2 Type: Executable File Path: %PUBLIC%\AppData\Local\Microsoft Group: Malware file Last Updated: August 6, 2016
16.	malware.exe	6f351e8c155abce0c2c9be22d1279a30	1
Name: malware.exe MD5: 6f351e8c155abce0c2c9be22d1279a30 Size: 791.55 KB (791552 bytes) Detections: 1 Type: Executable File Group: Malware file Last Updated: January 10, 2022
17.	malware.exe	5f8c56160714698da9ab396e9d5f43d1	1
Name: malware.exe MD5: 5f8c56160714698da9ab396e9d5f43d1 Size: 865.79 KB (865792 bytes) Detections: 1 Type: Executable File Group: Malware file Last Updated: January 10, 2022
18.	Puesto.exe	99e41d5797d6c4554e2e95d5eea90580	1
Name: Puesto.exe MD5: 99e41d5797d6c4554e2e95d5eea90580 Size: 1.59 MB (1590272 bytes) Detections: 1 Type: Executable File Path: C:\Windows\Puesto.exe Group: Malware file Last Updated: June 22, 2022
19.	Windows32.dll	0d2cd6dbfa233b1a664ff2fd84468564	0
Name: Windows32.dll MD5: 0d2cd6dbfa233b1a664ff2fd84468564 Size: 359.93 KB (359936 bytes) Detections: 0 Type: Dynamic link library Group: Malware file Last Updated: December 11, 2009
20.	malware.exe	dd18809874748a4fe6b7249cd3567c95	0
Name: malware.exe MD5: dd18809874748a4fe6b7249cd3567c95 Size: 306.68 KB (306688 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
21.	WINDOWS111.exe	2758a4e83ed3d4bb46e8530fbbca9ab5	0
Name: WINDOWS111.exe MD5: 2758a4e83ed3d4bb46e8530fbbca9ab5 Size: 398.84 KB (398848 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
22.	malware.exe, Server.exe	d4d059742ee19f25521df98f94043c84	0
Name: malware.exe, Server.exe MD5: d4d059742ee19f25521df98f94043c84 Size: 353.14 KB (353140 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
23.	malware.exe	3d80f73c7f70f24ec219f7dce5d7764d	0
Name: malware.exe MD5: 3d80f73c7f70f24ec219f7dce5d7764d Size: 386.04 KB (386048 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
24.	prsvr.exe	bcd0775ca686c5aea68ce549022b294a	0
Name: prsvr.exe MD5: bcd0775ca686c5aea68ce549022b294a Size: 392.06 KB (392060 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
25.	Explorer.exe	da692175cdd8907aaf3cf599eebe5da9	0
Name: Explorer.exe MD5: da692175cdd8907aaf3cf599eebe5da9 Size: 433.41 KB (433411 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009
26.	brc_Server.exe	3b14170c4773c99fb29e7ef74c1b7ec0	0
Name: brc_Server.exe MD5: 3b14170c4773c99fb29e7ef74c1b7ec0 Size: 194.56 KB (194560 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 11, 2009

More files

Registry Details

Backdoor.Graybird may create the following registry entry or registry entries:

File name without path

Puesto.exe

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

Backdoor.Graybird

Threat Scorecard

EnigmaSoft Threat Scorecard

Aliases

File System Details

Registry Details

Submit Comment

Related Posts

Backdoor.Graybird.GEN

Backdoor.Graybird!rem

Backdoor.Graybird.T

Trending

PracticalRemote

Triovideo.ru

Elibe Ransomware

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen