The file ABCD.EXE is a computer worm.
The worm ABCD.EXE is a self-replicating malicious program,
which uses a computer network to send copies of itself to other computers.
You must fix the ABCD.EXE problem as soon as possible!
Delete the file ABCD.EXE from all infected computers in your network.
Set up your network firewall against ABCD.EXE intervention.
Malware Analysis of ABCD.EXE
Full path on a computer: C:\RECYCLER\abcd.exe
Detected by UnHackMe:
Item Name: igfxtray
Author:
Related File: c:\recycler\abcd.exe dbgenum
Type: Auto Services
Item Name: abcd.exe
Author: Unknown
Related File: C:\RECYCLER\ABCD.EXE
Type: Running Processes
Removal Results: Success
Number of reboot: 1
ABCD.EXE is known as:
Worm.Recycler, Trojan.DownLoader2, Trojan.Autorun
ABCD.EXE hash:
- MD5: ccb6387918c4ec254eeeb2a0db669ae8
The file is used for downloading and installing other malware, Trojans, viruses by the commands received from the Command Center.
How to quickly detect ABCD.EXE presence?
Registry:
Folders:
Files:
Registry:- HKLM\System\CurrentControlSet\Services\igfxtray\ImagePath: “c:\recycler\abcd.exe dbgenum”
- HKLM\System\CurrentControlSet\Services\igfxtray\DisplayName: “igfxtray”
Folders:- C:\RECYCLER\cache
- %SysDir%\Usermf
- %SysDir%\Usermf\userm
Files:- C:\RECYCLER\abcd.exe
- %SysDir%\Usermf\userm\abc.xls
- %SysDir%\Usermf\userm\Allinone.bat
- %SysDir%\Usermf\userm\download_and_execute.exe
- %SysDir%\Usermf\userm\s_wine_flu.bat
- %SysDir%\Usermf\userm\s_wine_flu.vbs
- %SysDir%\???????