The file B8B4C15941632AEB0F3FD34B57D1648D.EXE is identified as a virus dropper.
The dropper B8B4C15941632AEB0F3FD34B57D1648D.EXE is used for downloading and installing other malware, Trojans, viruses by the commands received from the Command Center.
The file B8B4C15941632AEB0F3FD34B57D1648D.EXE loads into the computer memory and tries to connect to the dangerous web site.
Usually the B8B4C15941632AEB0F3FD34B57D1648D.EXE dropper does not infect the files on the computer and does not replicate itself on other computers.
Kill the B8B4C15941632AEB0F3FD34B57D1648D.EXE process and delete the file B8B4C15941632AEB0F3FD34B57D1648D.EXE.
Malware Analysis of Titan Antivirus 2013
Full path on a computer: %Common Appdata%\ifdstore\B8B4C15941632AEB0F3FD34B57D1648D.exe
Detected by RegRun Warrior:
Item Name: idefsvc
Author: IntVector Soutions SoftGroup
Related File: %COMMON APPDATA%\IFDSTORE\B8B4C15941632AEB0F3FD34B57D1648D.EXE
Type: Registry Run
Removal Results: Success
Number of reboot: 1
B8B4C15941632AEB0F3FD34B57D1648D.EXE is known as:
Trojan.Inject.RRE, Win32:Ramnit-BW [Cryp], Trj.dtcontx.G
Titan Antivirus 2013 hash:
- MD5: b8b4c15941632aeb0f3fd34b57d1648d
Registry:- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\idefsvc: “%Common Appdata%\ifdstore\B8B4C15941632AEB0F3FD34B57D1648D.exe /min”
Folders:- %Common Appdata%\ifdstore
- %Common Startmenu%\Programs\Titan Antivirus 2013
Files:- %Common Appdata%\ifdstore\app.ico
- %Common Appdata%\ifdstore\B8B4C15941632AEB0F3FD34B57D1648D.exe
- %Common Appdata%\ifdstore\cache.bin
- %Common Appdata%\ifdstore\idfdata.bin
- %Common Appdata%\ifdstore\support.ico
- %Common Appdata%\ifdstore\uninst.ico
- %Common Desktopdirectory%\Titan Antivirus 2013.lnk
- %Common Startmenu%\Programs\Titan Antivirus 2013\Remove Titan Antivirus 2013.lnk
- %Common Startmenu%\Programs\Titan Antivirus 2013\Titan Antivirus 2013 Help and Support.lnk
- %Common Startmenu%\Programs\Titan Antivirus 2013\Titan Antivirus 2013.lnk