Home Malware Programs Trojans Trojan.Zapchast

Trojan.Zapchast

Posted: May 1, 2007

Threat Metric

Ranking: 2,033
Threat Level: 8/10
Infected PCs: 11,383
First Seen: July 24, 2009
Last Seen: November 30, 2021
OS(es) Affected: Windows

Trojan.Zapchast is a Trojan backdoor that is designed to hijack your computer and steal your personal information. Once executed, Trojan.Zapchast attempts to connect to IRC through which he would receive commands from a remote host. Then the remote hacker may instruct Trojan.Zapchast to launch denial of service attacks, or send spam emails. Trojan.Zapchast is a serious security risk to your personal and financial data and we recommend its removal immediately.

Aliases

Heur.Suspicious [Comodo]Trojan.Win32.Zapchast.abli [Kaspersky]BKDR_ZAPCHAST.AX [TrendMicro]Backdoor.Trojan [Symantec]Trojan.Win32.Generic!BT [Sunbelt]Win32/Mirc_based [NOD32]Heuristic.LooksLike.Win32.Suspicious.J [McAfee-GW-Edition]IRC/Flood.gen.e [McAfee]not-a-virus:Client-IRC.Win32.mIRC.601 [Kaspersky]not-a-virus:Client-IRC.Win32.mIRC [Ikarus]Misc/Mirchack [Fortinet]Win32.Stration [eSafe]Backdoor.Win32.Mirc_based [Comodo](Suspicious) - DNAScan [CAT-QuickHeal]Trojan.Generic.1872038 [BitDefender]
More aliases (90)

Use SpyHunter to Detect and Remove PC Threats

If you are concerned that malware or PC threats similar to Trojan.Zapchast may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.

Download SpyHunter's Malware Scanner

Note: SpyHunter's free version is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware tool to remove the malware threats. Learn more on SpyHunter. If you would like to uninstall SpyHunter for any reason, please follow these uninstall instructions. To learn more about our policies and practices, visit our EULA, Privacy Policy and Threat Assessment Criteria .

Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



%TEMP%\data.vbs File name: data.vbs
Size: 692.97 KB (692974 bytes)
MD5: b134223cbd5608dcbf449a6cd04f8362
Detection count: 244
Mime Type: unknown/vbs
Path: %TEMP%\
Group: Malware file
Last Updated: November 22, 2016
q1[1].exe File name: q1[1].exe
Size: 177.66 KB (177664 bytes)
MD5: e55d9e2bf2b9af6415c7f52e6a08664b
Detection count: 94
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
avto1[1].exe, svw.exe File name: avto1[1].exe, svw.exe
Size: 179.2 KB (179200 bytes)
MD5: 54f1a95ce7ef55c9abe723e8f06a350c
Detection count: 93
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
sys_gh.dll File name: sys_gh.dll
Size: 3.07 KB (3072 bytes)
MD5: 1305e141f466165633db2640e3c6365c
Detection count: 92
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
baracudanew[1].exe, accessv.exe File name: baracudanew[1].exe, accessv.exe
Size: 44.54 KB (44544 bytes)
MD5: 91e5306cbcdf118605f11b947103de4e
Detection count: 90
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
spywaredetect[1].exe, ahuiz.exe File name: spywaredetect[1].exe, ahuiz.exe
Size: 46.08 KB (46080 bytes)
MD5: 2ad7f0b603c5a1f4ab7fd7404633a493
Detection count: 85
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
q3[1].exe File name: q3[1].exe
Size: 177.66 KB (177664 bytes)
MD5: 09dceebef459414871ca668d721d3198
Detection count: 84
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
avto2[1].exe, svx.exe File name: avto2[1].exe, svx.exe
Size: 179.2 KB (179200 bytes)
MD5: 95368e5692ddd32520a40b89361f66e6
Detection count: 82
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
teste4_p[1].exe, runsql.exe File name: teste4_p[1].exe, runsql.exe
Size: 202.75 KB (202752 bytes)
MD5: 4b959543bffd7e80f2f22bb1b2c875ee
Detection count: 81
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
goo[1].exe File name: goo[1].exe
Size: 155.64 KB (155648 bytes)
MD5: e6245881c2d132c4ba9465599f2f9979
Detection count: 76
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
q7[1].exe File name: q7[1].exe
Size: 177.66 KB (177664 bytes)
MD5: c6e5dc1b9db284bce329d1ffd3dbe9e6
Detection count: 74
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
teste3_p[1].exe, sv.exe File name: teste3_p[1].exe, sv.exe
Size: 202.24 KB (202240 bytes)
MD5: 2f11dc9e8fd8820a4e8c0214a8d140e0
Detection count: 73
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
rqRJDVNH.dll File name: rqRJDVNH.dll
Size: 32.47 KB (32475 bytes)
MD5: d65d004d61fc1ac42c5d34262a45212a
Detection count: 72
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
WINClock.exe File name: WINClock.exe
Size: 452.6 KB (452608 bytes)
MD5: 4c741661a6536da1b7fc4c2eeffbd23a
Detection count: 56
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
ieupdates.exe File name: ieupdates.exe
Size: 72.7 KB (72704 bytes)
MD5: f07823c56238e5130788ccc2796df25e
Detection count: 54
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
update.exe File name: update.exe
Size: 52.73 KB (52736 bytes)
MD5: 4dd25f5eb80ea06d5f025680a4d26767
Detection count: 53
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
1054v.exe File name: 1054v.exe
Size: 45.56 KB (45568 bytes)
MD5: b03049bd5c9c8b96392991476b5dc2b5
Detection count: 46
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
awturPHY.dll File name: awturPHY.dll
Size: 32.47 KB (32475 bytes)
MD5: 5d6578c711b21ba8c4494e271327c178
Detection count: 15
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 11, 2009
file.exe File name: file.exe
Size: 718.33 KB (718336 bytes)
MD5: 3a25cdcffb91f703e7b25580ebc5139c
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: October 12, 2016
q2[1].exe File name: q2[1].exe
Size: 177.66 KB (177664 bytes)
MD5: cded350dfea06d8f30a9d98623d6129c
Detection count: 2
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009
avto[1].exe, svc.exe File name: avto[1].exe, svc.exe
Size: 179.2 KB (179200 bytes)
MD5: 23e2b99c3c8e238f055ed5633e8333d8
Detection count: 0
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: December 11, 2009

More files

Registry Modifications

The following newly produced Registry Values are:

Directory%APPDATA%\SnetchballRegexp file mask%APPDATA%\exlorer.exe%APPDATA%\WindowsDefender.exe%TEMP%\data.vbsHKEY..\..\..\..{RegistryKeys}Software\SnetchballHKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}Snetchball

Related Posts