Trojan.Ekstak

By CagedTech in Trojans

Threat Scorecard

Ranking:	3,889
Threat Level:	80 % (High)
Infected Computers:	100,497

First Seen:	September 12, 2017
Last Seen:	September 20, 2023
OS(es) Affected:	Windows

Table of Contents

SpyHunter Detects & Remove Trojan.Ekstak

File System Details

Trojan.Ekstak may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	lsid10015.exe	9dd5051b7b0eb0c0676f55057b6c05b2	160
Name: lsid10015.exe MD5: 9dd5051b7b0eb0c0676f55057b6c05b2 Size: 1.11 MB (1118208 bytes) Detections: 160 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
2.	btscservice.exe	c97e6e4a1c87d6bc15d51509a5973a13	79
Name: btscservice.exe MD5: c97e6e4a1c87d6bc15d51509a5973a13 Size: 1.48 MB (1483992 bytes) Detections: 79 Type: Executable File Path: %ALLUSERSPROFILE%\btscservice Group: Malware file Last Updated: October 3, 2018
3.	betaservice.exe	e200f7220ec3dcf499c8a00c087132cb	23
Name: betaservice.exe MD5: e200f7220ec3dcf499c8a00c087132cb Size: 3.7 MB (3706880 bytes) Detections: 23 Type: Executable File Path: %ALLUSERSPROFILE%\betaservice\betaservice.exe Group: Malware file Last Updated: April 21, 2022
4.	betaservice.exe	77df0c9f0c3f247a8a65be88e25919e6	20
Name: betaservice.exe MD5: 77df0c9f0c3f247a8a65be88e25919e6 Size: 2.39 MB (2396160 bytes) Detections: 20 Type: Executable File Path: %ALLUSERSPROFILE%\betaservice\betaservice.exe Group: Malware file Last Updated: June 26, 2020
5.	lsid14551.exe	c3ed90adfa4a5a1ff49f6c4bf09c727a	19
Name: lsid14551.exe MD5: c3ed90adfa4a5a1ff49f6c4bf09c727a Size: 1.1 MB (1105920 bytes) Detections: 19 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
6.	lsid25038.exe	98eb4915b82a1bdcdaaa277c18a43655	16
Name: lsid25038.exe MD5: 98eb4915b82a1bdcdaaa277c18a43655 Size: 1.11 MB (1110720 bytes) Detections: 16 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
7.	lsid49472.exe	8265acba0f958ee979debb5048a9b2a3	14
Name: lsid49472.exe MD5: 8265acba0f958ee979debb5048a9b2a3 Size: 1.11 MB (1110720 bytes) Detections: 14 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
8.	lsid15949.exe	770e5e43c9100cf7787382de2edacc35	12
Name: lsid15949.exe MD5: 770e5e43c9100cf7787382de2edacc35 Size: 1.11 MB (1110720 bytes) Detections: 12 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
9.	lsid40358.exe	0aca6e95c2f52ac4076e0061ae9599c7	12
Name: lsid40358.exe MD5: 0aca6e95c2f52ac4076e0061ae9599c7 Size: 1.03 MB (1036288 bytes) Detections: 12 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
10.	betaservice.exe	3580ba96d88a061575e9a661dcb3185e	10
Name: betaservice.exe MD5: 3580ba96d88a061575e9a661dcb3185e Size: 3.7 MB (3706880 bytes) Detections: 10 Type: Executable File Path: %ALLUSERSPROFILE%\betaservice\betaservice.exe Group: Malware file Last Updated: June 26, 2020
11.	lsid11092.exe	4d427c31dec5e1e213527b6871023382	9
Name: lsid11092.exe MD5: 4d427c31dec5e1e213527b6871023382 Size: 1.11 MB (1110720 bytes) Detections: 9 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
12.	lsid16037.exe	ce32207dcf31bb60445d5176ec33f5f0	9
Name: lsid16037.exe MD5: ce32207dcf31bb60445d5176ec33f5f0 Size: 1.11 MB (1118208 bytes) Detections: 9 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
13.	lsid9247.exe	1d00588cd8dbc3291d7e9716defabcca	8
Name: lsid9247.exe MD5: 1d00588cd8dbc3291d7e9716defabcca Size: 1.1 MB (1105920 bytes) Detections: 8 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
14.	lsid38160.exe	30fbe4cf3a42afff4291a72444ea6b3e	8
Name: lsid38160.exe MD5: 30fbe4cf3a42afff4291a72444ea6b3e Size: 1.03 MB (1036288 bytes) Detections: 8 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
15.	lsid16569.exe	2c505bcc82683afe7afbe20b73775a6a	7
Name: lsid16569.exe MD5: 2c505bcc82683afe7afbe20b73775a6a Size: 1.1 MB (1105920 bytes) Detections: 7 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
16.	lsid40201.exe	266b65a47e00539150c7fc976570836d	7
Name: lsid40201.exe MD5: 266b65a47e00539150c7fc976570836d Size: 1.03 MB (1032192 bytes) Detections: 7 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
17.	lsid4273.exe	356e5289ca51fe895a94d4270d9d6aed	7
Name: lsid4273.exe MD5: 356e5289ca51fe895a94d4270d9d6aed Size: 1.03 MB (1032192 bytes) Detections: 7 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
18.	lsid7945.exe	980733aae49ed2e429c6a44d35a8ff51	6
Name: lsid7945.exe MD5: 980733aae49ed2e429c6a44d35a8ff51 Size: 1.11 MB (1118208 bytes) Detections: 6 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
19.	lsid54053.exe	f290786ae4435c61195ed8db5f52b115	6
Name: lsid54053.exe MD5: f290786ae4435c61195ed8db5f52b115 Size: 1.03 MB (1036288 bytes) Detections: 6 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
20.	lsid30300.exe	b55a58160b8c6c579492b58643fc9ad1	5
Name: lsid30300.exe MD5: b55a58160b8c6c579492b58643fc9ad1 Size: 1.03 MB (1032192 bytes) Detections: 5 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
21.	lsid29267.exe	794dc48c78acb850fb79d311d0b2117e	5
Name: lsid29267.exe MD5: 794dc48c78acb850fb79d311d0b2117e Size: 1.03 MB (1032192 bytes) Detections: 5 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
22.	lsid37460.exe	f6b792175a34510c8886380ea9e8453f	5
Name: lsid37460.exe MD5: f6b792175a34510c8886380ea9e8453f Size: 1.04 MB (1040384 bytes) Detections: 5 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
23.	lsid34534.exe	4aa182ef2504dddd7e9d1c8441a9c9a4	4
Name: lsid34534.exe MD5: 4aa182ef2504dddd7e9d1c8441a9c9a4 Size: 1.03 MB (1032192 bytes) Detections: 4 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
24.	lsid14324.exe	3076a7df2e2bf7becd873f04d3b9b85e	4
Name: lsid14324.exe MD5: 3076a7df2e2bf7becd873f04d3b9b85e Size: 1.03 MB (1036288 bytes) Detections: 4 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
25.	lsid57096.exe	cd955e65265d842e292a34b7f889c04a	3
Name: lsid57096.exe MD5: cd955e65265d842e292a34b7f889c04a Size: 1.11 MB (1110720 bytes) Detections: 3 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
26.	lsid44648.exe	51d7669ee5b36ffa3677b8b364cc006e	3
Name: lsid44648.exe MD5: 51d7669ee5b36ffa3677b8b364cc006e Size: 1.1 MB (1105920 bytes) Detections: 3 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017
27.	lsid923.exe	72935090baedbb804298af84ca2c97ac	3
Name: lsid923.exe MD5: 72935090baedbb804298af84ca2c97ac Size: 1.03 MB (1032192 bytes) Detections: 3 Type: Executable File Path: %ALLUSERSPROFILE%\Anwendungsdaten Group: Malware file Last Updated: September 12, 2017
28.	lsid20893.exe	de37558391b1cff202019e2a95c739d6	3
Name: lsid20893.exe MD5: de37558391b1cff202019e2a95c739d6 Size: 1.04 MB (1040384 bytes) Detections: 3 Type: Executable File Path: %ALLUSERSPROFILE% Group: Malware file Last Updated: September 12, 2017

More files

Registry Details

Trojan.Ekstak may create the following registry entry or registry entries:

Regexp file mask

%ALLUSERSPROFILE%\Application Data\betaservice\betaservice.exe

%ALLUSERSPROFILE%\Application Data\localnetservice\localnetservice.exe

%ALLUSERSPROFILE%\Application Data\WinSx[RANDOM CHARACTERS].exe

%ALLUSERSPROFILE%\betaservice\betaservice.exe

%ALLUSERSPROFILE%\c{0,1}lsid[NUMBERS].exe

%ALLUSERSPROFILE%\KeService.exe

%ALLUSERSPROFILE%\localnetservice\localnetservice.exe

%ALLUSERSPROFILE%\SecureIM.exe

%ALLUSERSPROFILE%\vshub.exe

%ALLUSERSPROFILE%\WinSx[RANDOM CHARACTERS].exe

HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}

dahiService

Directories

Trojan.Ekstak may create the following directory or directories:

%ALLUSERSPROFILE%\Application Data\btscService

%ALLUSERSPROFILE%\Application Data\cpafService

%ALLUSERSPROFILE%\Application Data\dagfservice

%ALLUSERSPROFILE%\Application Data\dahcService

%ALLUSERSPROFILE%\Application Data\dahhService

%ALLUSERSPROFILE%\Application Data\dahiService

%ALLUSERSPROFILE%\Application Data\dahjService

%ALLUSERSPROFILE%\Application Data\dahkService

%ALLUSERSPROFILE%\Application Data\ellfService

%ALLUSERSPROFILE%\aaagService

%ALLUSERSPROFILE%\btscService

%ALLUSERSPROFILE%\cpafService

%ALLUSERSPROFILE%\dadzService

%ALLUSERSPROFILE%\daflService

%ALLUSERSPROFILE%\dafwservice

%ALLUSERSPROFILE%\dagcService

%ALLUSERSPROFILE%\dagfservice

%ALLUSERSPROFILE%\daggservice

%ALLUSERSPROFILE%\daglService

%ALLUSERSPROFILE%\dagoService

%ALLUSERSPROFILE%\dahaService

%ALLUSERSPROFILE%\dahcService

%ALLUSERSPROFILE%\dahhService

%ALLUSERSPROFILE%\dahiService

%ALLUSERSPROFILE%\dahjService

%ALLUSERSPROFILE%\dahkService

%ALLUSERSPROFILE%\ellfService

%PROGRAMFILES(x86)%\ViewFD

%programfiles%\ViewFD

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

Trojan.Ekstak

Threat Scorecard

EnigmaSoft Threat Scorecard

SpyHunter Detects & Remove Trojan.Ekstak

File System Details

Registry Details

Directories

Submit Comment

Related Posts

Trojan.Ekstak.GA

Trojan.Ekstak.CA

Trojan.Ekstak.C

Trending

'YouPorn' Email Scam

Safe Search Eng

Findtheirreport.com

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen