Skip navigation.
Home

Partizan

Hello guys!

I have found malwares that download Partizan.exe. I can't determine if Partizan is clean or not, and why its used by some bankers.

In this page Partizan is described like an antirootkit, part of UnHackMe:
http://www.greatis.com/appdata/a/p/partizan.exe.htm

This is the malware that use Partizan.

Sandbox running and reg entrance:
http://www.cwsandbox.org/?page=details&id=159720&password=tsbcv

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Session Manager "" = [REG_MULTI_SZ, value: "autocheck autochk *,Partizan", size: 29 bytes]

Can anyone provide me more information about this file?

Thanks in advance