| Port No | 31791 |
| Service Name | HACKTACK |
| RFC Doc | 0 |
| Protocol | TCP |
| Description | This is the detection for the file that drops another malware, which is the client Side of the BKDR_HACKTACK_2K. This backdoor program gives a hacker vital system information and compromises the security of the network. |
| Reference Link | HACKTACK |
| Attack | Solution: Clean up the registry by running REGEDIT (START/RUN/regedit) and then: Search for the text "Cfgwiz32.exe" and remove the invalid key from HKEY_LOCAL\Software\Microsoft\Windows CurrentVersion\Run\ “Configuration Wizard” “C:\Windows\Cfgwiz32.exe” Search for the text "200ññññññññ " and remove the invalid key from \HKEY_LOCAL_MACHINE\Software\Microsoft\General\Settings “200ññññññññññññññññññññññññññ” Scan your system with Trend Micro antivirus and delete all files detected as BKDR_HACKTACK.A. To do this, Trend Micro customers must download the latest pattern file and scan their system. Other email users may use HouseCall, Trend Micro's free online virus scanner. |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.