Cerber 6 Ransomware Files
%APPDATA%\README.hta
File name: README.htaSize: 63.11 KB (63111 bytes)
MD5: 21d29d2251fa52c6b0be5c7e617e7968
Detection count: 40
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: February 24, 2017
%APPDATA%\README.hta
File name: README.htaSize: 63.05 KB (63059 bytes)
MD5: 7ab10c25e7e6a55418b23237ab66df76
Detection count: 37
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: February 24, 2017
%SystemDrive%\Users\<username>\README.hta
File name: README.htaSize: 4.33 KB (4336 bytes)
MD5: c2b93ccebb2b761d5cacde77cc50318c
Detection count: 37
Mime Type: unknown/hta
Path: %SystemDrive%\Users\csshare
Group: Malware file
Last Updated: April 15, 2017
%APPDATA%\_README_.hta
File name: _README_.htaSize: 67.72 KB (67727 bytes)
MD5: f2bb7cf294fca7a84914cc3f8fb2cba9
Detection count: 37
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: April 28, 2017
%APPDATA%\README.hta
File name: README.htaSize: 63.11 KB (63111 bytes)
MD5: c37c6d1e8fc882821a07942150e8dfe0
Detection count: 37
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: February 24, 2017
%WINDIR%\system32\config\systemprofile\AppData\Roaming\{D1E3C2B5-6F1F-7EDB-704C-4F6FD93CFC2B}\java.exe
File name: java.exeSize: 195.88 KB (195882 bytes)
MD5: 89043f897f6edda15578be7c7118296e
Detection count: 37
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\AppData\Roaming\{D1E3C2B5-6F1F-7EDB-704C-4F6FD93CFC2B}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\README.hta
File name: README.htaSize: 63.05 KB (63059 bytes)
MD5: 43a37a64c27f3d1d98c5f674c84e67d9
Detection count: 37
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: February 24, 2017
%APPDATA%\README.hta
File name: README.htaSize: 63.11 KB (63111 bytes)
MD5: 072f662615c859d075881795a9b632a2
Detection count: 37
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: February 24, 2017
%WINDIR%\system32\config\systemprofile\AppData\Roaming\{19159587-0FFD-7C06-0F4A-ED4FAE723DF2}\TSWbPrxy.exe
File name: TSWbPrxy.exeSize: 375.04 KB (375040 bytes)
MD5: 903a96965af081bb0db875f3651834d7
Detection count: 37
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\AppData\Roaming\{19159587-0FFD-7C06-0F4A-ED4FAE723DF2}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup\README.hta
File name: README.htaSize: 63.19 KB (63192 bytes)
MD5: 42d849f230543ccb97b63bdb9e2302ca
Detection count: 35
Mime Type: unknown/hta
Path: %APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup
Group: Malware file
Last Updated: April 15, 2017
%ALLUSERSPROFILE%\README.hta
File name: README.htaSize: 4.08 KB (4086 bytes)
MD5: 56964623fd2ad365cea22997e405b847
Detection count: 35
Mime Type: unknown/hta
Path: %ALLUSERSPROFILE%
Group: Malware file
Last Updated: April 15, 2017
%APPDATA%\README.hta
File name: README.htaSize: 63.11 KB (63111 bytes)
MD5: c7f4d3e064e0c2ce4eb17295bb224451
Detection count: 35
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: April 15, 2017
%APPDATA%\README.hta
File name: README.htaSize: 63.11 KB (63111 bytes)
MD5: 343809e41e1f81cd62e00be1ab443b05
Detection count: 35
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: February 24, 2017
%APPDATA%\README.hta
File name: README.htaSize: 67.71 KB (67712 bytes)
MD5: e52dc935c7eb82a88d1e7695dfa89ac8
Detection count: 35
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: April 15, 2017
%APPDATA%\README.hta
File name: README.htaSize: 63.08 KB (63083 bytes)
MD5: 628a2b0abfc5463428ee32e3694ce683
Detection count: 35
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: April 15, 2017
%USERPROFILE%\Start Menu\Programs\Startup\README.hta
File name: README.htaSize: 63.05 KB (63059 bytes)
MD5: 454cc4242bc14694845190da895fd58d
Detection count: 35
Mime Type: unknown/hta
Path: %USERPROFILE%\Start Menu\Programs\Startup
Group: Malware file
Last Updated: April 15, 2017
%APPDATA%\README.hta
File name: README.htaSize: 63.05 KB (63059 bytes)
MD5: 31886fda6f8141ab95e77744a970166b
Detection count: 35
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: April 15, 2017
%APPDATA%\README.hta
File name: README.htaSize: 63.08 KB (63083 bytes)
MD5: 9853604ba2ca8af85935c23c89e55294
Detection count: 35
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: April 15, 2017
%APPDATA%\_README_.hta
File name: _README_.htaSize: 67.71 KB (67711 bytes)
MD5: 02de9d5f63f70d73a916dc2358a53023
Detection count: 30
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: April 28, 2017
%WINDIR%\system32\config\systemprofile\AppData\Roaming\{E0F18505-7847-D7EC-5835-9B7B0BED035E}\bitsadmin.exe
File name: bitsadmin.exeSize: 274.72 KB (274721 bytes)
MD5: aee53aa9ac465b05c78574250a5d1e4d
Detection count: 28
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\AppData\Roaming\{E0F18505-7847-D7EC-5835-9B7B0BED035E}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\_README_.hta
File name: _README_.htaSize: 67.72 KB (67727 bytes)
MD5: 6a3e0e26ecfee1b2af374fab42fc7b2e
Detection count: 28
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: April 28, 2017
C:\Users\<username>\AppData\Roaming\IP.dll
File name: IP.dllSize: 57.85 KB (57856 bytes)
MD5: 25aca4beee09029f584e200cacd82508
Detection count: 28
File type: Dynamic link library
Mime Type: unknown/dll
Path: C:\Users\<username>\AppData\Roaming\IP.dll
Group: Malware file
Last Updated: November 12, 2021
%WINDIR%\System32\config\systemprofile\AppData\Roaming\{1CC79B4A-5498-F454-470D-63B7552F500B}\PriceFountainUpdateVer.exe
File name: PriceFountainUpdateVer.exeSize: 346.62 KB (346624 bytes)
MD5: 001c2c9312fae69901a834e7cf96da7b
Detection count: 26
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\System32\config\systemprofile\AppData\Roaming\{1CC79B4A-5498-F454-470D-63B7552F500B}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{20A05012-2626-7252-4634-6AD87F0E367A}\grpconv.exe
File name: grpconv.exeSize: 171.13 KB (171137 bytes)
MD5: 5be9a3492c5eb3dea35f1d630f0b571f
Detection count: 23
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{20A05012-2626-7252-4634-6AD87F0E367A}
Group: Malware file
Last Updated: June 30, 2016
%WINDIR%\system32\config\systemprofile\AppData\Roaming\{6B977300-2501-F740-F2C0-799D6ACA21C2}\plasrv.exe
File name: plasrv.exeSize: 314.03 KB (314033 bytes)
MD5: e7b51d08fbe342ce72293d7bee94ade3
Detection count: 23
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\AppData\Roaming\{6B977300-2501-F740-F2C0-799D6ACA21C2}
Group: Malware file
Last Updated: June 30, 2016
IP.dll
File name: IP.dllSize: 87.55 KB (87552 bytes)
MD5: 6e7a2e044c5cebfcf798f8409755b51b
Detection count: 23
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: June 4, 2016
%USERPROFILE%\Start Menu\Programs\Startup\_HELP_HELP_HELP_RSHI_.hta
File name: _HELP_HELP_HELP_RSHI_.htaSize: 75.9 KB (75904 bytes)
MD5: a46e5f2ce8a20bbb8548959debb9ac0c
Detection count: 23
Mime Type: unknown/hta
Path: %USERPROFILE%\Start Menu\Programs\Startup
Group: Malware file
Last Updated: April 15, 2017
%APPDATA%\_README_.hta
File name: _README_.htaSize: 67.72 KB (67727 bytes)
MD5: 4c49e483cdf4333de2af8cfb8baa144c
Detection count: 23
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: April 28, 2017
%APPDATA%\_README_.hta
File name: _README_.htaSize: 67.72 KB (67727 bytes)
MD5: 40bfaf29d438c5fea00a9927b9582290
Detection count: 23
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: April 28, 2017
%APPDATA%\IP.dll
File name: IP.dllSize: 49.15 KB (49152 bytes)
MD5: b288cf3248aebe14f6281b3f1d89855f
Detection count: 23
File type: Dynamic link library
Mime Type: unknown/dll
Path: %APPDATA%
Group: Malware file
Last Updated: June 4, 2016
%APPDATA%\{9B2841BF-6327-C475-DCA2-62F1B1F50EBF}\rasdial.exe
File name: rasdial.exeSize: 197.63 KB (197633 bytes)
MD5: 1bee25d375cb32cfa6c354733d6b6569
Detection count: 21
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{9B2841BF-6327-C475-DCA2-62F1B1F50EBF}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{77AAE784-7402-3104-A5CF-7047CF211752}\rasdial.exe
File name: rasdial.exeSize: 186.11 KB (186112 bytes)
MD5: 72168178d124b61ea313b65794fa1da1
Detection count: 21
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{77AAE784-7402-3104-A5CF-7047CF211752}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{66B80ABB-D5ED-7325-E704-C25948F1C638}\icsunattend.exe
File name: icsunattend.exeSize: 208.15 KB (208159 bytes)
MD5: 654161493e519692b2beadb0ebecb10f
Detection count: 21
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{66B80ABB-D5ED-7325-E704-C25948F1C638}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{58D66859-F27F-663F-97F0-8AE701C9E976}\eventcreate.exe
File name: eventcreate.exeSize: 188.67 KB (188672 bytes)
MD5: fbd5141aa21e9e0f9f2a86244adba90a
Detection count: 19
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{58D66859-F27F-663F-97F0-8AE701C9E976}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{33408AD7-977C-AE20-CEA9-96998BE7BDA1}\bootcfg.exe
File name: bootcfg.exeSize: 327.97 KB (327973 bytes)
MD5: fc50a7211bc15d2395c1df89f1152d1c
Detection count: 19
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{33408AD7-977C-AE20-CEA9-96998BE7BDA1}
Group: Malware file
Last Updated: July 15, 2016
C:\Users\<username>\AppData\Roaming\{9022C244-6677-9076-4221-A999A76E5FDA}\chkdsk.exe
File name: chkdsk.exeSize: 270.33 KB (270336 bytes)
MD5: 3e2c9f51ff945196ec39ce8c632f5d62
Detection count: 19
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\{9022C244-6677-9076-4221-A999A76E5FDA}\chkdsk.exe
Group: Malware file
Last Updated: August 12, 2021
%APPDATA%\{D86D80F9-2D34-95A9-8608-4A853DA2A955}\grpconv.exe
File name: grpconv.exeSize: 157.18 KB (157184 bytes)
MD5: 8f644928958f0fa8b80317bce5bc9611
Detection count: 16
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{D86D80F9-2D34-95A9-8608-4A853DA2A955}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{4D622FDF-D755-E6E5-38CB-C4C966CD3292}\certreq.exe
File name: certreq.exeSize: 250.11 KB (250110 bytes)
MD5: d1658894dbde6eb42e94592e1bfd7fd2
Detection count: 16
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{4D622FDF-D755-E6E5-38CB-C4C966CD3292}
Group: Malware file
Last Updated: June 30, 2016
%WINDIR%\system32\config\systemprofile\AppData\Roaming\{97CF45A0-6300-6800-C000-846D0495FC}\wchinotuaf.exe
File name: wchinotuaf.exeSize: 554.49 KB (554496 bytes)
MD5: 3511d49a21c8d4da451be1411b866791
Detection count: 16
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\AppData\Roaming\{97CF45A0-6300-6800-C000-846D0495FC}
Group: Malware file
Last Updated: June 30, 2016
%WINDIR%\system32\config\systemprofile\AppData\Roaming\{A1B4D52B-784D-6EA8-269F-DC69F84195CF}\SndVol.exe
File name: SndVol.exeSize: 195.84 KB (195840 bytes)
MD5: 5654e825675d24eceebc6a11702d65f0
Detection count: 16
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\AppData\Roaming\{A1B4D52B-784D-6EA8-269F-DC69F84195CF}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{914469EA-F554-8EB0-B9E0-B438E30DEAA2}\wecutil.exe
File name: wecutil.exeSize: 219.4 KB (219407 bytes)
MD5: 12196ae9fd9e835f8a9d7379694e7bbc
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{914469EA-F554-8EB0-B9E0-B438E30DEAA2}
Group: Malware file
Last Updated: June 30, 2016
%USERPROFILE%\Start Menu\Programs\Startup\_HELP_HELP_HELP_STOV8H1_.hta
File name: _HELP_HELP_HELP_STOV8H1_.htaSize: 75.86 KB (75864 bytes)
MD5: 1632ca0953d5499bf251455159a80ea0
Detection count: 14
Mime Type: unknown/hta
Path: %USERPROFILE%\Start Menu\Programs\Startup
Group: Malware file
Last Updated: April 15, 2017
%APPDATA%\{C0038984-F82B-36DC-43B3-FA53BC27D6DB}\bootcfg.exe
File name: bootcfg.exeSize: 178.49 KB (178491 bytes)
MD5: 02fa4c1cce23621c985f78de3d782695
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{C0038984-F82B-36DC-43B3-FA53BC27D6DB}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{842F61E6-BF53-FE7A-D146-4A9CB562DAE1}\sdbinst.exe
File name: sdbinst.exeSize: 272.52 KB (272526 bytes)
MD5: 8b901324bdc01bdd0d5f0eeadc2bba12
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{842F61E6-BF53-FE7A-D146-4A9CB562DAE1}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\_HELP_HELP_HELP_ND8FZ.hta
File name: _HELP_HELP_HELP_ND8FZ.htaSize: 75.78 KB (75787 bytes)
MD5: 041ef4b6a12e0b3165172884301b0d1e
Detection count: 12
Mime Type: unknown/hta
Path: %APPDATA%
Group: Malware file
Last Updated: April 15, 2017
%APPDATA%\{6B977300-2501-F740-F2C0-799D6ACA21C2}\iscsicli.exe
File name: iscsicli.exeSize: 194.56 KB (194560 bytes)
MD5: 19525d94e79efe331dd018803f17caed
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{6B977300-2501-F740-F2C0-799D6ACA21C2}
Group: Malware file
Last Updated: March 6, 2024
%WINDIR%\system32\config\systemprofile\AppData\Roaming\{E5FE9B82-8D6F-0C7A-3B9A-1271374B0940}\vdsldr.exe
File name: vdsldr.exeSize: 186.11 KB (186112 bytes)
MD5: 9f54a18c1859bf9bc0f5b9c17cf6d9cc
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\AppData\Roaming\{E5FE9B82-8D6F-0C7A-3B9A-1271374B0940}
Group: Malware file
Last Updated: June 30, 2016
%WINDIR%\system32\config\systemprofile\AppData\Roaming\{BAEFF9A9-DDF3-5820-8425-5152AD7413F0}\odbcconf.exe
File name: odbcconf.exeSize: 177.38 KB (177387 bytes)
MD5: 149071f96bfea3bd33126dbfbe1dec3d
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\AppData\Roaming\{BAEFF9A9-DDF3-5820-8425-5152AD7413F0}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{EF632E76-2812-761B-D374-ECF3C476FAEB}\sdbinst.exe
File name: sdbinst.exeSize: 197.37 KB (197376 bytes)
MD5: 41829ecf4084dab53fef9aeaaf4a0fd1
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{EF632E76-2812-761B-D374-ECF3C476FAEB}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{6B977300-2501-F740-F2C0-799D6ACA21C2}\certreq.exe
File name: certreq.exeSize: 287.74 KB (287744 bytes)
MD5: 44d37a69994b7883a2875ea990006375
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{6B977300-2501-F740-F2C0-799D6ACA21C2}
Group: Malware file
Last Updated: June 30, 2016
%WINDIR%\system32\config\systemprofile\AppData\Roaming\{4C250660-3D00-9800-4000-EC99420264}\chmnstyafk.exe
File name: chmnstyafk.exeSize: 521.72 KB (521728 bytes)
MD5: f1b271a3747b565963dadbe3c94838cb
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\AppData\Roaming\{4C250660-3D00-9800-4000-EC99420264}
Group: Malware file
Last Updated: June 30, 2016
%WINDIR%\system32\config\systemprofile\AppData\Roaming\{14F8B964-74E8-EA92-0E74-31A20D3350C9}\getmac.exe
File name: getmac.exeSize: 133.37 KB (133376 bytes)
MD5: 7d67457e9acd226017c11e9966d17df8
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\AppData\Roaming\{14F8B964-74E8-EA92-0E74-31A20D3350C9}
Group: Malware file
Last Updated: June 30, 2016
%WINDIR%\system32\config\systemprofile\AppData\Roaming\{4361CB33-41FD-51BC-2562-18F2D34578DA}\odbcconf.exe
File name: odbcconf.exeSize: 278.78 KB (278784 bytes)
MD5: 962065c514c534c1af599b51255ad867
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\AppData\Roaming\{4361CB33-41FD-51BC-2562-18F2D34578DA}
Group: Malware file
Last Updated: June 30, 2016
%SystemDrive%\Users\<username>\AppData\Roaming\{8E7C709A-D93B-DE06-05F4-CA039AADCA46}\at.exe
File name: at.exeSize: 177.62 KB (177627 bytes)
MD5: 3727d1c8694f5328a43f574fd32133e8
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %SystemDrive%\Users\<username>\AppData\Roaming\{8E7C709A-D93B-DE06-05F4-CA039AADCA46}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{D76772E3-BED3-2552-62F4-A66BFCBFE3C0}\wuapp.exe
File name: wuapp.exeSize: 727.79 KB (727797 bytes)
MD5: 60293ee56daabf733b05e2f966b98151
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{D76772E3-BED3-2552-62F4-A66BFCBFE3C0}
Group: Malware file
Last Updated: June 30, 2016
%SystemDrive%\Users\<username>\AppData\Roaming\{319B4CFD-A4CB-B439-280D-E25611065196}\certreq.exe
File name: certreq.exeSize: 276.23 KB (276238 bytes)
MD5: 8e1acfd5dbd44657c5db6ccc44fb2451
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %SystemDrive%\Users\<username>\AppData\Roaming\{319B4CFD-A4CB-B439-280D-E25611065196}
Group: Malware file
Last Updated: June 30, 2016
%WINDIR%\system32\config\systemprofile\AppData\Roaming\{225BE012-1558-9ABE-583D-D59969B6A978}\getmac.exe
File name: getmac.exeSize: 354.08 KB (354081 bytes)
MD5: 6961d0e6ff00d7240a0d4e0f34479842
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\AppData\Roaming\{225BE012-1558-9ABE-583D-D59969B6A978}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{DAE183E4-B79A-F47D-2F33-51521EE8B272}\grpconv.exe
File name: grpconv.exeSize: 266.56 KB (266563 bytes)
MD5: ab6e4ae4bcb185c997c9d83254945d77
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{DAE183E4-B79A-F47D-2F33-51521EE8B272}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{3D7C046F-E14B-F545-84DA-D10FC64221C7}\wecutil.exe
File name: wecutil.exeSize: 269.56 KB (269568 bytes)
MD5: 2f634bc784238d737dc520f691463958
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{3D7C046F-E14B-F545-84DA-D10FC64221C7}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{9BF456D9-C0DE-435D-C81E-AACE8D1E7F4C}\icsunattend.exe
File name: icsunattend.exeSize: 210.69 KB (210692 bytes)
MD5: 1e5fe97572008366962aade12ce8f4d9
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{9BF456D9-C0DE-435D-C81E-AACE8D1E7F4C}
Group: Malware file
Last Updated: June 30, 2016
%WINDIR%\system32\config\systemprofile\AppData\Roaming\{B8137E08-5BC2-4A8D-A743-D664FBCF4A23}\Dism.exe
File name: Dism.exeSize: 259.32 KB (259328 bytes)
MD5: e4cfdefbcf67d1a9a1623f74ecc3482c
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\AppData\Roaming\{B8137E08-5BC2-4A8D-A743-D664FBCF4A23}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{0B77EF00-7678-428E-2AE3-75662962A21C}\wuapp.exe
File name: wuapp.exeSize: 266.24 KB (266240 bytes)
MD5: 0f18691680a2d95cb6bb5d2b381362a2
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{0B77EF00-7678-428E-2AE3-75662962A21C}
Group: Malware file
Last Updated: September 5, 2018
%APPDATA%\{96FECF7B-E8EC-E6AD-2EEB-B21559B7483E}\grpconv.exe
File name: grpconv.exeSize: 142.08 KB (142080 bytes)
MD5: 23216006fe4fb9cbc816548b449f24b6
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{96FECF7B-E8EC-E6AD-2EEB-B21559B7483E}
Group: Malware file
Last Updated: June 30, 2016
%WINDIR%\system32\config\systemprofile\AppData\Roaming\{0C6662F3-01FF-B226-2459-9D56FD59FF68}\rasphone.exe
File name: rasphone.exeSize: 354.06 KB (354062 bytes)
MD5: dfe61549d06d7d6873bbdc8fb630d75c
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\AppData\Roaming\{0C6662F3-01FF-B226-2459-9D56FD59FF68}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{D76772E3-BED3-2552-62F4-A66BFCBFE3C0}\mmc.exe
File name: mmc.exeSize: 250.15 KB (250154 bytes)
MD5: 855b4312fb5912f4d48d8bb6d8f5a7ae
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{D76772E3-BED3-2552-62F4-A66BFCBFE3C0}
Group: Malware file
Last Updated: August 19, 2016
%SystemDrive%\Users\<username>\AppData\Roaming\{AA5D52D1-B9CB-7338-3FCD-64833E9B4BE9}\mtstocom.exe
File name: mtstocom.exeSize: 378.56 KB (378560 bytes)
MD5: 64159d208b2bd2e8130fa932944dce8d
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %SystemDrive%\Users\<username>\AppData\Roaming\{AA5D52D1-B9CB-7338-3FCD-64833E9B4BE9}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{997F03C8-71C5-5672-743F-FADC06211802}\wuapp.exe
File name: wuapp.exeSize: 515.35 KB (515354 bytes)
MD5: be11ba611d044de4a9cd76fa62cdc019
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{997F03C8-71C5-5672-743F-FADC06211802}
Group: Malware file
Last Updated: June 30, 2016
%APPDATA%\{52194C4C-6BB3-3C34-D5D3-88CCA8EAA53F}\iscsicli.exe
File name: iscsicli.exeSize: 727.88 KB (727888 bytes)
MD5: 0b4e69b2ca712da4f4af0e531f9a8e10
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\{52194C4C-6BB3-3C34-D5D3-88CCA8EAA53F}
Group: Malware file
Last Updated: June 30, 2016
%WINDIR%\system32\config\systemprofile\AppData\Roaming\{43C9E55C-2532-6901-E549-8760AC46DC80}\mfpmp.exe
File name: mfpmp.exeSize: 278.78 KB (278784 bytes)
MD5: 7142acace7562df7a0aca9a67461294b
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\config\systemprofile\AppData\Roaming\{43C9E55C-2532-6901-E549-8760AC46DC80}
Group: Malware file
Last Updated: June 30, 2016