We checked up the file CMMON32.EXE and found it hazardous.
The file CMMON32.EXE must be deleted from the system immediately.
Kill the process CMMON32.EXE and remove CMMON32.EXE from the Windows startup.
Malware Analysis of CMMON32.EXE
Full path on a computer: %Temp%\cmmon32.exe
Detected by UnHackMe:
CMMON32.EXE
Default location: %Temp%\cmmon32.exe
Removal Results: Success
Number of reboot: 1
CMMON32.EXE is known as:
Trojan.Maximus, Trojan.Zbot, Backdoor.Poison.gbfp, Backdoor.Poison.4Dw5Ijav6F8, Trojan.DownLoader10.53722, Backdoor.Poison, Hack.Poison.gb.(kcloud), Backdoor.Poison.BY, a variant of Win32.Injector.AOBN, PE:Trojan.VBInject.1.64FE, W32.Injector.AJQO.tr
CMMON32.EXE hash:
- MD5: 566740efc7fc6f9b6e8207be5ce41f50
How to quickly detect CMMON32.EXE presence?
![]( "Registry")
Registry:
![]( "Files")
Files:
Registry:- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\A: “%Temp%\cmmon32.exe A”
Files:- %Temp%\cmmon32.exe
- %Temp%\tmp0104action.bat