| K7 Detection Name | Affected OS | Prevalence | AV Definition Version |
|---|---|---|---|
| Trojan-Downloader ( 005d72051 ) | Windows | Low | 14.29.58268 |
| MD5 | 293e4a2c858d7b8b19ea8954e5e8fe27 |
| SHA256 | 87b27ec9a27fccb63c23688277e50ed0d1afc598d981a6169ed4b14a21188452 |
| File Size | 85,504 bytes |
| Packer Information | N/A |
| First Seen | 12-01-2026 |
| Last Seen | 09-02-2026 |
| Aliases | Win32/TrojanDownloader.Carberp.AJ |
Behavior Details
1. Dropped files:
879A00C7B004F019.exe
Under the folder
C:\Users\
2. Dropped files:
Endpoint
Under the folder
\Device\Afd
3. Dropped files:
RecentFileCache.bcf
Under the folder
C:\Windows\appcompat\Programs
4. Dropped files:
Report.wer.tmp
Report.wer
Under the folder
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\NonCritical_x64_e317d1ce19fa961dfda531fc4a2c595260922c_cab_052972aa
5. Dropped files:
RasAcd
Under the folder
\Device
6. Dropped files:
879A00C7B004F019
Under the folder
C:\Windows\sysnative\Tasks
7. Dropped files:
ValidationTask
ValidationTaskDeadline
Under the folder
C:\Windows\sysnative\Tasks\Microsoft\Windows\Windows Activation Technologies
Removal Instructions
1. Update the copy of K7 security to the latest version.
2. Scan the system completely and remove the detected files.
3. Restart the machine.