Trojan.Win32.Cosmu.xxs

By GoldSparrow in Trojans

Translate To:

Trojan.Win32.Cosmu.xxs is a Windows platform Trojan program. Trojan.Win32.Cosmu.xxs is able to spread via spam e-mail and the exploitation of system vulnerabilities. On entering a system, Trojan.Win32.Cosmu.xxs will create a start-up registry entry and run in the background of the system. Trojan.Win32.Cosmu.xxs may also download additional infections and engage in malicious botnet activities.

File System Details

Trojan.Win32.Cosmu.xxs may create the following file(s):

Expand All | Collapse All

#	File Name	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	%Temp%\Ev~NeN^e.eXe
Name: %Temp%\Ev~NeN^e.eXe Type: Executable File
2.	%MyDocuments%\My Music .scr
Name: %MyDocuments%\My Music .scr
3.	%Windir%\AppPatch .scr
Name: %Windir%\AppPatch .scr
4.	%Windir%\Connection Wizard .scr
Name: %Windir%\Connection Wizard .scr
5.	%Windir%\dns .scr
Name: %Windir%\dns .scr
6.	%Windir%\Help .scr
Name: %Windir%\Help .scr
7.	%Windir%\java .scr
Name: %Windir%\java .scr
8.	%Windir%\msagent .scr
Name: %Windir%\msagent .scr
9.	%Windir%\Offline Web Pages .scr
Name: %Windir%\Offline Web Pages .scr
10.	%Windir%\Provisioning .scr
Name: %Windir%\Provisioning .scr
11.	%Windir%\Resources .scr
Name: %Windir%\Resources .scr
12.	%Windir%\srchasst .scr
Name: %Windir%\srchasst .scr
13.	%Windir%\system32 .scr
Name: %Windir%\system32 .scr
14.	%Windir%\Web .scr
Name: %Windir%\Web .scr
15.	%MyDocuments%\My eBooks .scr
Name: %MyDocuments%\My eBooks .scr
16.	%Windir%\addins .scr
Name: %Windir%\addins .scr
17.	%Windir%\Config .scr
Name: %Windir%\Config .scr
18.	%Windir%\Debug .scr
Name: %Windir%\Debug .scr
19.	%Windir%\ehome .scr
Name: %Windir%\ehome .scr
20.	%Windir%\inf .scr
Name: %Windir%\inf .scr
21.	%Windir%\Microsoft.NET .scr
Name: %Windir%\Microsoft.NET .scr
22.	%Windir%\mui .scr
Name: %Windir%\mui .scr
23.	%Windir%\PeerNet .scr
Name: %Windir%\PeerNet .scr
24.	%Windir%\repair .scr
Name: %Windir%\repair .scr
25.	%Windir%\SoftwareDistribution .scr
Name: %Windir%\SoftwareDistribution .scr
26.	[file and pathname of the sample #1]
Name: [file and pathname of the sample #1]
27.	%Windir%\twain_32 .scr
Name: %Windir%\twain_32 .scr
28.	%DesktopDir%\Unused Desktop Shortcuts .scr
Name: %DesktopDir%\Unused Desktop Shortcuts .scr
29.	%MyDocuments%\My Pictures .scr
Name: %MyDocuments%\My Pictures .scr
30.	%Windir%\Cache .scr
Name: %Windir%\Cache .scr
31.	%Windir%\Cursors .scr
Name: %Windir%\Cursors .scr
32.	%Windir%\Driver Cache .scr
Name: %Windir%\Driver Cache .scr
33.	%Windir%\ime .scr
Name: %Windir%\ime .scr
34.	%Windir%\Media .scr
Name: %Windir%\Media .scr
35.	%Windir%\msapps .scr
Name: %Windir%\msapps .scr
36.	%Windir%\pchealth .scr
Name: %Windir%\pchealth .scr
37.	%Windir%\Registration .scr
Name: %Windir%\Registration .scr
38.	%Windir%\security .scr
Name: %Windir%\security .scr
39.	%Windir%\system .scr
Name: %Windir%\system .scr
40.	%Windir%\Temp .scr
Name: %Windir%\Temp .scr
41.	%Windir%\WinSxS .scr
Name: %Windir%\WinSxS .scr

Registry Details

Trojan.Win32.Cosmu.xxs may create the following registry entry or registry entries:

HKEY..\..\..\..{RegistryKeys}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

Trojan.Win32.Cosmu.xxs

File System Details

Registry Details

1 Comment

Submit Comment

Trending

Rzfu Ransomware

'YouPorn' Email Scam

Rzkd Ransomware

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen