Threat Database Trojan Downloader TrojanDownloader:Win32/Kraddare.G

TrojanDownloader:Win32/Kraddare.G

By Domesticus in Trojan Downloader

TrojanDownloader:Win32/Kraddare.G is a Trojan that drops and installs other files, which may be other malware infections without an attacked computer user's awareness. Once installed, TrojanDownloader:Win32/Kraddare.G makes system modifications by dropping malevolent files. TrojanDownloader:Win32/Kraddare.G also modifies the Windows Registry. TrojanDownloader:Win32/Kraddare.G modifies the registry entry to make sure that its copy loads automatically when the PC user starts Windows. While being run, TrojanDownloader:Win32/Kraddare.G strives to drop updated copies of itself from one of the web addresses.

File System Details

TrojanDownloader:Win32/Kraddare.G may create the following file(s):
# File Name Detections
1. %LOCALAPPDATA%\signkey\iesignkey.exe
2. %LOCALAPPDATA%\signkey\signkey.exe
3. %LOCALAPPDATA%\signkey\ie_signkey.exe
4. %LOCALAPPDATA%\signkey\skun.exe

Registry Details

TrojanDownloader:Win32/Kraddare.G may create the following registry entry or registry entries:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\signkey DisplayIcon = %LOCALAPPDATA%\signkey\skun.exe,0
HKEY_CURRENT_USER\Software\signkey User = acc0e9de_
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run signkey = %LOCALAPPDATA%\signkey\signkey.exe

Trending

Most Viewed

Loading...