Bitdefender @Bitdefender

Backdoor.Hamweq.A

June 25, 2008

1 Min Read

The virus starts by decryipting a part of its code in order to resolve its imports.

When that is done it searches for the process svchost.exe, injects in it and creates the mutex asd..6567fj.

After the virus code has been injected it checks if it runs from C:RecyclerD-1-5-21-1482476501-1644491937-682003330-1013autorun.exe and if doesn’t it copies to that location. It then creates two threads.

For more information, symptoms and removal instructions click here .

Tagsbackdoor code hamweq starts virus

About the author

View All Posts

Bitdefender

The meaning of Bitdefender’s mascot, the Dacian Draco, an ancient symbol that depicts a mythical animal with a wolf’s head and a dragon’s body, is “to watch” and to “guard with a sharp eye.” Like our mascot, we are committed to using Bitdefender Labs, our world-class research team, to vigilantly find and eradicate threats for our customers, and to use our platform for the larger good.

Adware.Whenu.BSQ

Win32.Klest

M	T	W	T	F	S	S
				1	2	3
4	5	6	7	8	9	10
11	12	13	14	15	16	17
18	19	20	21	22	23	24
25	26	27	28	29	30	31

Backdoor.Hamweq.A

About the author

Bitdefender

Promo

Recent shouts

Time Machine

You may also like

How Bitdefender Protects You from Ransomware (Part 1)

Feeling Lucky This Holiday Season? COVID-19, Google and Microsoft ‘Lotteries’ are Out for Your Info and Money

How can a Security Solution keep your Devices, Privacy and Personal Data Safe till Christmas and Beyond?

About the author

Bitdefender

Promo

Recent shouts

Time Machine