Trojan-Dropper.Win32.VB.ahhe
Trojan-Dropper.Win32.VB.ahhe is a malicious trojan virus that enables remote access to the targeted computer system. Trojan-Dropper.Win32.VB.ahhe propagates through false online malware scanners and bundled security downloads and fraudulent codecs obtained from third party websites. Trojan-Dropper.Win32.VB.ahhe will download files to the computer without user's permission, which will lead to security risk. Trojan-Dropper.Win32.VB.ahhe may represent a security risk for the affected PC system and its network environment.
File System Modifications
- The following files were created in the system:
# File Name 1 %ProgramFiles%\Bifrost\server.exe 2 [file and pathname of the sample #1]
Registry Modifications
- The following newly produced Registry Values are:
HKEY..\..\..\..{Subkeys}HKEY_CURRENT_USER\Software\BifrostHKEY_LOCAL_MACHINE\SOFTWARE\BifrostHKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{9D71D88C-C598-4935-C5D1-43AA4DB90836}HKEY..\..\..\..{RegistryKeys}HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\MediaResources\msvideoHKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\MediaResources\msvideo
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.