SharaQQ 4.1
Copyright © MegaSecurity
By Just Paradise
Informations
| Author | Just Paradise |
| Family | SharaQQ |
| Category | Information Stealer |
| Version | SharaQQ 4.1 |
Additional Information
Server:
dropped files:
C:\WINDOWS\SYSTEM\Rundlll.exe
C:\WINDOWS\Pal.exe
size: 49.224 bytes
startup:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run "Defaults"
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce "Defaults"
HKCR\txtfile\shell\open\command "(Default)"
Added:
c:\WINDOWS\SYSTEM\config.dll
c:\WINDOWS\SYSTEM\Iexplarer.dll
c:\WINDOWS\SYSTEM\Rundlll.datIf you recognize any personal information on this page and wish to have it removed or redacted, please contact us at jplesueur@phrozen.io. We are committed to protecting your privacy in accordance with GDPR regulations.