Trojan.Malat
Posted: November 30, 2010
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 8/10 |
|---|---|
| Infected PCs: | 382 |
| First Seen: | November 30, 2010 |
|---|---|
| Last Seen: | May 29, 2022 |
| OS(es) Affected: | Windows |
Trojan.Malat is a Trojan that can easily access your PC system. Trojan.Malat often comes bundled with other programs and can install itself without a PC user's knowledge. Once your PC gets infected with Trojan.Malat, Trojan.Malat downloads numerous additional malware threats. Trojan.Malat can also spread through removable flash drives. Trojan.Malat may slow down you PC and Internet connection. Trojan.Malat drops malicious processes and connects to the Internet to download additional infected files. Trojan.Malat overrides several keys in the Windows Registry to disguise its existence from anti-virus software and to launch each time you start your PC system.
Aliases
Generic Trojan [Panda]Generic29.YP [AVG]W32/Refroso.AGEA!tr [Fortinet]TR/Jorik.Nrgbot.ot [AntiVir]Trojan.Generic.KDV.681889 [BitDefender]Trojan.Win32.Jorik.Nrgbot.ot [Kaspersky]Win32:VBCrypt-BIM [Trj] [Avast]Generic.dx!bf3l [McAfee]Generic28.CNYY [AVG]W32/Yakes.AP!tr [Fortinet]Mal/Katusha-J [Sophos]TROJ_GEN.RCBC8GU [TrendMicro]TR/Gimemo.EB.6 [AntiVir]Trojan.DownLoader6.29607 [DrWeb]TrojWare.Win32.Kryptik.AITM [Comodo]
More aliases (642)
More aliases (642)
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:C:\RECYCLER\S-1-5-21-8353443810-1838708212-635884812-2802\rundll32.exe
File name: rundll32.exeSize: 112.64 KB (112640 bytes)
MD5: bbfe7aee57a0d65add4f138ccee3be54
Detection count: 82
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-8353443810-1838708212-635884812-2802
Group: Malware file
Last Updated: January 24, 2011
%WINDIR%\TEMP\rgsbab\setup.exe
File name: setup.exeSize: 36.35 KB (36352 bytes)
MD5: 11c7d6098105d07cb0d1d44d739cdc33
Detection count: 68
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\TEMP\rgsbab
Group: Malware file
Last Updated: August 16, 2011
%WINDIR%\SysWOW64\Windows\main.exe
File name: main.exeSize: 327.68 KB (327680 bytes)
MD5: 9ec8efbaed14751a333941fd59288fad
Detection count: 60
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\SysWOW64\Windows
Group: Malware file
Last Updated: March 13, 2012
%WINDIR%\system32\Hers.dll
File name: Hers.dllSize: 102.91 KB (102912 bytes)
MD5: 7a5ba76e918f81742c54f3a4ad4570b0
Detection count: 41
File type: Dynamic link library
Mime Type: unknown/dll
Path: %WINDIR%\system32
Group: Malware file
Last Updated: December 24, 2012
%APPDATA%\249E.exe
File name: 249E.exeSize: 172.03 KB (172032 bytes)
MD5: ce4448403129231c12513315c3284fbd
Detection count: 25
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: May 8, 2013
%WINDIR%\help\soundman.exe
File name: soundman.exeSize: 172.03 KB (172037 bytes)
MD5: 79703f07eaed6e07bb464f4c3bd69ffa
Detection count: 21
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\help
Group: Malware file
Last Updated: November 30, 2010
C:\Windows\SysWOW64\.dll
File name: .dllSize: 400.89 KB (400896 bytes)
MD5: f5ca48bdedad1dc510600e3b6c7a5029
Detection count: 14
File type: Dynamic link library
Mime Type: unknown/dll
Path: C:\Windows\SysWOW64\.dll
Group: Malware file
Last Updated: December 23, 2022
%WINDIR%\SysWOW64\imapiext.exe
File name: imapiext.exeSize: 2.51 MB (2518436 bytes)
MD5: f28bcc1e8d3dd98ca6e5f7757d983f01
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\SysWOW64
Group: Malware file
Last Updated: August 30, 2011
%APPDATA%\ZwinkyMultiZcard2012.exe
File name: ZwinkyMultiZcard2012.exeSize: 2.62 MB (2623488 bytes)
MD5: 48ee2bbc34fec73553fe5d60eb872d52
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: January 16, 2013
%SystemDrive%\windowx\winup.exe
File name: winup.exeSize: 736.87 KB (736873 bytes)
MD5: 95bef8237140d57f02a2b325739f4fc7
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %SystemDrive%\windowx
Group: Malware file
Last Updated: September 19, 2011
%WINDIR%\System32\drivers\csrss.exe
File name: csrss.exeSize: 29.18 KB (29184 bytes)
MD5: e65c36a96c9ce4f125829e4338184ec3
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\System32\drivers
Group: Malware file
Last Updated: August 19, 2011
%PROGRAMFILES%\DAEMON Tools Lite\DTLite.exe
File name: DTLite.exeSize: 1.07 MB (1070592 bytes)
MD5: 6ae9de170b9712ca08df3649e588f1c8
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\DAEMON Tools Lite
Group: Malware file
Last Updated: May 29, 2022
%PROGRAMFILES%\Microsoft Works\ccsrss.exe
File name: ccsrss.exeSize: 675.32 KB (675328 bytes)
MD5: 56bc63480fc6ac3e79a44d8bc382ee04
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\Microsoft Works
Group: Malware file
Last Updated: March 8, 2012
%WINDIR%\Selrahc.exe
File name: Selrahc.exeSize: 211.45 KB (211456 bytes)
MD5: 8a57507149179c7dd6c29c6975553244
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%
Group: Malware file
Last Updated: January 6, 2011
C:\Users\<username>\Desktop\مجلد جديد \خاص\RemoteINF.exe
File name: RemoteINF.exeSize: 277.34 KB (277342 bytes)
MD5: afa53c5704fdd4d0f005dca0ae57054b
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\Desktop\مجلد جديد \خاص\RemoteINF.exe
Group: Malware file
Last Updated: December 18, 2021
C:\RECYCLER\S-1-5-21-3644899984-4926728182-262241970-5677\MsMxEng.exe
File name: MsMxEng.exeSize: 258.56 KB (258567 bytes)
MD5: 5f4536126dc37ce921e99c8fab168ba2
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: C:\RECYCLER\S-1-5-21-3644899984-4926728182-262241970-5677
Group: Malware file
Last Updated: July 7, 2011
%WINDIR%\Config\ZxWinUpdate.exe
File name: ZxWinUpdate.exeSize: 32.76 KB (32768 bytes)
MD5: a2d9d5c1fecc7d147046abdd6326d209
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\Config
Group: Malware file
Last Updated: December 1, 2010
%WINDIR%\svthost.exe
File name: svthost.exeSize: 492.03 KB (492032 bytes)
MD5: 441bf72b0beb6ffd44a208039d09ae94
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%
Group: Malware file
Last Updated: February 8, 2012
%WINDIR%\system32\windll.exe
File name: windll.exeSize: 1.78 MB (1786900 bytes)
MD5: 32c979477a5e4883024236a34a68886e
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32
Group: Malware file
Last Updated: February 20, 2012
%WINDIR%\system32\svchostnt.exe
File name: svchostnt.exeSize: 32.78 KB (32783 bytes)
MD5: 0f105384e64f546baa4ec4bde67f7603
Detection count: 4
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32
Group: Malware file
Last Updated: March 28, 2011
svdhalp.exe
File name: svdhalp.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
svthost.exe
File name: svthost.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
svchostnt.exe
File name: svchostnt.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
RemoteINF.exe
File name: RemoteINF.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
windll.exe
File name: windll.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
winpsvc.exe
File name: winpsvc.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
imapiext.exe
File name: imapiext.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
hloadDA.dll
File name: hloadDA.dllFile type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
csrcs.exe
File name: csrcs.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
cscperf32.exe
File name: cscperf32.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
csc.exe
File name: csc.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
mstscc.exe
File name: mstscc.exeFile type: Executable File
Mime Type: unknown/exe
Group: Malware file
More files
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.