Home Malware Programs Backdoors Backdoor.Win32.MoSucker.kn

Backdoor.Win32.MoSucker.kn

Posted: April 15, 2011

Backdoor.Win32.MoSucker.kn is a malicious backdoor trojan that runs in the background and enables remote access to the targeted computer system. Backdoor.Win32.MoSucker.kn can use many system resources to trace your computer activities or distribute pop-up advertisements that may greatly slow down the computer performance or even crash it randomly. Backdoor.Win32.MoSucker.kn can also open up a backdoor through which the attacker can get access to any information collected on your computer system, such as personal and financial details. Backdoor.Win32.MoSucker.kn is very difficult to detect, because it conceals itself in the system directory or the Windows registry itself. You should delet Backdoor.Win32.MoSucker.kn as quickly as possible.

File System Modifications

  • The following files were created in the system:
    # File Name
    1 %System%\cmpakmid.dll
    2 %System%\delihad.dll
    3 %System%\favekser32.dll
    4 %System%\keyunole.dll
    5 %System%\sndetaud\audepmap\inuwdb.dll

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY..\..\..\..{Subkeys}HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3B9AF62E-E6FE-4776-AA64-5788F4CE8B19}\InprocServer32HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3B9AF62E-E6FE-4776-AA64-5788F4CE8B19}\ProgIDHKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BA88CFE-46A4-42F6-B467-C968ED72C35C}HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BA88CFE-46A4-42F6-B467-C968ED72C35C}\InprocServer32HKEY_LOCAL_MACHINE\SOFTWARE\Classes\InugappHKEY_LOCAL_MACHINE\SOFTWARE\Classes\Inugapp\CLSID
Loading...