<< Back to Top Threats
K7 Detection Name Affected OS Prevalence AV Definition Version
Trojan ( 005d568f1 ) Windows Low 12.43.44960
MD5

04e33e56663a00c376e64d79f1b715c6
SHA256

7e2a75bafce64ae5b88f95caa7e1ee04d7cc5bced03bc37384a5035085c8c830
File Size

443,304 bytes
Packer Information

N/A
First Seen

23-10-2022
Last Seen

04-01-2026
Aliases

Win32/Kryptik.HRGO

Behavior Details

1. Creates Registry:

Adds registry data
C:\Users\\AppData\Local\Temp\04e33e56663a00c376e6.dat.exe

Under the key:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\04e33e56663a00c376e6.dat.exe

Removal Instructions

1. Update the copy of K7 security to the latest version.
2. Open Windows registry editor.
3. Delete the registry data
C:\Users\\AppData\Local\Temp\04e33e56663a00c376e6.dat.exe

Under the key:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\04e33e56663a00c376e6.dat.exe
4. Close the Windows registry.
5. Restart the machine.