We checked up the file ZMREJWPX.7Z and found it hazardous.
The file ZMREJWPX.7Z must be deleted from the system immediately.
Kill the process ZMREJWPX.7Z and remove ZMREJWPX.7Z from the Windows startup.
Malware Analysis of ZMREJWPX.EXE
Full path on a computer: %Profile%\zmrejwpx.exe
Detected by UnHackMe:
ZMREJWPX.EXE
Default location: %Profile%\zmrejwpx.exe
Removal Results: Success
Number of reboot: 1
ZMREJWPX.EXE is known as:
Trojan.Spambot.11176, Troj.Androm-L, a variant of Win32.Injector.AJBF
ZMREJWPX.EXE hash:
- MD5: 59830619e62b16d616a48c91d7e62409
The file is used for downloading and installing other malware, Trojans, viruses by the commands received from the Command Center.
How to quickly detect ZMREJWPX.EXE presence?
![]( "Registry")
Registry:
![]( "Files")
Files:
Registry:- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\MSConfig: “”%Profile%\zmrejwpx.exe”"
Files:- %Recent%\1aafaad2cd589642f5f921ae3d67cbd8.lnk
- %Recent%\sand-box.lnk
- %Profile%\zmrejwpx.exe
- %Temp%\1aafaad2cd589642f5f921ae3d67cbd8.jpg