Home Malware Programs Backdoors Eldycow

Eldycow

Posted: October 16, 2008

Eldycow is a Backdoor Trojan designed to secretly install additional malware and rogue anti-spyware programs into your computer system. Eldycow may open a backdoor and allow an attacker to have unauthorized access to your computer. Eldycow may generate a large amount of fake popups. Eldycow is known to work similar to other Trojan infections, such as Trojan Zlob.

File System Modifications

  • The following files were created in the system:
    # File Name
    1 %System%\braviax.exe
    2 %System%\delself.bat
    3 %system%\winivstr.exe
    4 beep.sys
    5 cru629.dat
    6 hadjajr.ini.old
    7 hu2rcn.exe
    8 ~ie1.exe

Registry Modifications

  • The following newly produced Registry Values are:
    HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run braviax

Related Posts

Loading...