Threat Search: 

ThreatExpert's Statistics for Malware.Gammima [PC Tools]:

Malware.Gammima [PC Tools] is also known as:
Threat AliasNumber of Incidents
W32.Gammima.AG [Symantec]124
Worm:Win32/Taterf.B [Microsoft]74
Mal/Generic-A [Sophos]29
PWS:Win32/Frethog.gen!B [Microsoft]25
W32.Gammima [Symantec]23
Generic PWS.ak [McAfee]18
Trojan-GameThief.Win32.Magania [Ikarus]16
Mal/Taterf-B, Mal/Taterf-A [Sophos]13
Worm.Win32.Taterf [Ikarus]11
Trojan.Win32.Inhoo [Ikarus]9
Mal/Taterf-A [Sophos]8
Troj/Lineag-GQ, Mal/Taterf-B, Mal/Taterf-A, Mal/Autorun-K [Sophos]8
Trojan-GameThief.Win32.Magania.csar [Kaspersky Lab]8
Mal/Taterf-B, Mal/EncPk-JS [Sophos]7
PWS-Gamania.b!a [McAfee]7
Generic PWS.ak!a [McAfee]6
Trojan:Win32/Inhoo.A [Microsoft]6
W32/Autorun.worm.by [McAfee]6
Mal/Generic-A, Mal/EncPk-EG, Mal/Taterf-B [Sophos]5
Mal/Taterf-B, Mal/Taterf-A, Mal/EncPk-EG [Sophos]5
Troj/Lineag-GQ, Mal/Taterf-B [Sophos]5
TrojanDownloader:Win32/Frethog.C [Microsoft]5
W32.Gammima.AG!gen2 [Symantec]5
Mal/EncPk-IE [Sophos]4
Mal/Generic-A, Mal/EncPk-JS [Sophos]4
Mal/Generic-A, Mal/Taterf-B [Sophos]4
Mal/Taterf-B [Sophos]4
Mal/Taterf-B, Mal/EncPk-EG [Sophos]4
Trojan.Crypt [Ikarus]4
Worm.Win32.AutoRun [Ikarus]4
Mal/EncPk-JS [Sophos]3
Mal/Generic-A, Mal/Taterf-B, Mal/EncPk-JS [Sophos]3
Mal/Generic-A, Mal/Taterf-B, Mal/EncPk-JS, Mal/Frethog-B [Sophos]3
Mal/Generic-A, Mal/Taterf-B, Mal/Taterf-A [Sophos]3
Mal/Taterf-B, Mal/Taterf-A, Mal/Autorun-K [Sophos]3
PWS:Win32/OnLineGames.AH [Microsoft]3
PWS-Gamania.gen.a [McAfee]3
PWS-Gamania.gen.k [McAfee]3
PWS-Gamania.gen.p [McAfee]3
PWS-OnlineGames.ei.dll [McAfee]3
TrojanDownloader:Win32/Injector.gen!W [Microsoft]3
W32.Gammima.AG!gen3 [Symantec]3
Win-Trojan/Xema.variant [AhnLab]3
Backdoor.Win32.Agent.anaj [Kaspersky Lab]2
Generic PWS.o [McAfee]2
Mal/EncPk-EG [Sophos]2
Mal/EncPk-IG [Sophos]2
Mal/EncPk-IG, Troj/Virtum-Gen [Sophos]2
Mal/Generic-A, Mal/EncPk-EG [Sophos]2
Mal/Generic-A, Mal/EncPk-JS, Mal/Frethog-B [Sophos]2
Mal/Generic-A, Mal/Taterf-B, Mal/EncPk-JS, Mal/Taterf-A [Sophos]2
Mal/Taterf-B, Mal/EncPk-JS, Mal/Frethog-B [Sophos]2
New Win32.s [McAfee]2
PWS.Win32 [Ikarus]2
PWS-Gamania [McAfee]2
PWS-Gamania.gen.n [McAfee]2
PWS-Gamania.gen.o [McAfee]2
PWS-Mmorpg!fv [McAfee]2
PWS-Mmorpg!hn [McAfee]2
PWS-Mmorpg!hu [McAfee]2
PWS-OnlineGames.a [McAfee]2
Troj/Virtum-Gen [Sophos]2
TrojanDownloader:Win32/Small.gen!AA [Microsoft]2
TrojanDownloader:Win32/Zlob.BBD [Microsoft]2
Trojan-GameThief.Win32.Magania.butv [Kaspersky Lab]2
Trojan-GameThief.Win32.Magania.bvaz [Kaspersky Lab]2
Trojan-GameThief.Win32.Magania.bvqu [Kaspersky Lab]2
Trojan-GameThief.Win32.Magania.bzwv [Kaspersky Lab]2
Trojan-GameThief.Win32.Magania.caje [Kaspersky Lab]2
Trojan-GameThief.Win32.Magania.cbpx [Kaspersky Lab]2
Trojan-GameThief.Win32.Magania.cbus [Kaspersky Lab]2
Trojan-GameThief.Win32.Magania.ccdv [Kaspersky Lab]2
Trojan-GameThief.Win32.Magania.clqc [Kaspersky Lab]2
Trojan-GameThief.Win32.Magania.copw [Kaspersky Lab]2
Trojan-GameThief.Win32.Magania.crwe [Kaspersky Lab]2
Trojan-GameThief.Win32.Magania.cssq [Kaspersky Lab]2
Trojan-GameThief.Win32.Magania.cvlv [Kaspersky Lab]2
W32/Autorun-AZA [Sophos]2
W32/Game-B [Sophos]2
Win32.SuspectCrc [Ikarus]2
Win-Trojan/Malware.92160.L [AhnLab]2
Win-Trojan/OnlineGameHack.123392.Y [AhnLab]2
Win-Trojan/OnlineGameHack.81920.CI [AhnLab]2
Dropper/Krap.111734 [AhnLab]1
Dropper/Malware.113614 [AhnLab]1
Dropper/Malware.113645 [AhnLab]1
Dropper/Malware.114180 [AhnLab]1
Dropper/Malware.76109 [AhnLab]1
Dropper/OnlineGameHack.110070 [AhnLab]1
Dropper/OnlineGameHack.113233 [AhnLab]1
Dropper/Onlinegamehack.92160 [AhnLab]1
Generic Downloader.ey [McAfee]1
Generic Packed [McAfee]1
Generic PWS.y!bck [McAfee]1
Generic PWS.y!bds [McAfee]1
Generic PWS.y!xg [McAfee]1
Generic.dx!gac [McAfee]1
Generic.dx!gbq [McAfee]1
Generic.dx!gns [McAfee]1
Generic.dx!lcw [McAfee]1

Malware.Gammima [PC Tools] has the following possible country of origin:
OriginNumber of Incidents
China75

Malware.Gammima [PC Tools] is known to be created as:
%System%\ahnfgss0.dll
%System%\ahnfgss1.dll
%System%\ahnsbsb.exe
%System%\ahnxsds0.dll
%System%\ahnxsds1.dll
%System%\amvo.exe
%System%\aqoeerw.exe
%System%\bnmkue0.dll
%System%\bnmkue1.dll
%System%\ckvo.exe
%System%\ckvo0.dll
%System%\ckvo1.dll
%System%\cyban.exe
%System%\cyban0.dll
%System%\cyban1.dll
%System%\j3ewro.exe
%System%\jwedsfdo0.dll
%System%\jwedsfdo1.dll
%System%\jwedsfdo2.dll
%System%\kav320.dll
%System%\kav321.dll
%System%\lhgjyit0.dll
%System%\lhgjyit1.dll
%System%\mkfght0.dll
%System%\mkfght1.dll
%System%\nmdfgds0.dll
%System%\nmdfgds1.dll
%System%\nmdfgds2.dll
%System%\olhrwef.exe
%System%\rttrwq.exe
%Temp%\4tddfwq0.dll
%Temp%\4tddfwq1.dll
%Temp%\cvasds0.dll
%Temp%\cvasds1.dll
%Temp%\cvasds2.dll
%Temp%\ekgwob.dll
%Temp%\herss.exe
%Temp%\lhgjyit0.dll
%Temp%\lhgjyit1.dll
%Temp%\lhgjyit2.dll
%Temp%\nmdfgds0.dll
%Temp%\nmdfgds1.dll
%Temp%\nmdfgds2.dll
%Temp%\olhrwef.exe
%Temp%\rg9g9bgq.exe
%Temp%\uret463.exe
%Temp%\xvassdf.exe
c:\0ap.exe
c:\0fkk02x.exe
c:\0fpdq2dw.exe
c:\0qw6vege.exe
c:\10nb.exe
c:\1a1dndah.exe
c:\202tq6.exe
c:\2fiji.com
c:\2id9.exe
c:\2u.com
c:\2x2w.exe
c:\3c.exe
c:\6ruaqx.exe
c:\86.exe
c:\8nkhba.exe
c:\8xcrbho6.exe
c:\9b9w3.exe
c:\9d6tpg.exe
c:\9fo3ar0j.exe
c:\9g86.exe
c:\9nu2c.exe
c:\9u.exe
c:\a2g21.exe
c:\b00ijwpu.exe
c:\cqb6wo.exe
c:\ctu8r.exe
c:\curqp.exe
c:\dcp6w.exe
c:\eexyv.exe
c:\emmsc2tf.exe
c:\f9o8o.exe
c:\g9rv.exe
c:\hjvjte.exe
c:\hx.exe
c:\i0yva6.exe
c:\i2ypts.exe
c:\i9bwjpqc.exe
c:\j0.exe
c:\j6lb.exe
c:\mb9x.exe
c:\mjafm.exe
c:\mranjm.exe
c:\n89f1d1w.exe
c:\ngp8l.exe
c:\pd0o1.exe
c:\ph.com
c:\q3kku.exe
c:\qbr2q.exe
c:\qcod.exe
c:\qw6t0mpm.exe
c:\r1wvuyxh.exe
c:\rg9g9bgq.exe
c:\s.exe
Notes:
  • %System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
  • %Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).