Threat Search: 

ThreatExpert's Statistics for New Malware.dw [McAfee]:

New Malware.dw [McAfee] is also known as:
Threat AliasNumber of Incidents
Mal/Behav-160, Mal/Emogen-E, Mal/Behav-009, Mal/Basine-C [Sophos]390
W32.Rispif.A [Symantec]192
Packed.Generic.181 [Symantec]95
WORM_AUTORUN.AJO [Trend Micro]53
Backdoor.Win32.Ceckno [Ikarus]20
Trojan Horse [Symantec]20
Trojan.KillAV [Symantec]19
Backdoor.Win32.IRCBot [Ikarus]14
Mal/Emogen-E, Mal/Packer [Sophos]14
Win-Trojan/Xema.variant [AhnLab]14
Backdoor.Win32.Hupigon [Ikarus]13
Mal/Packer, Mal/Basine-A, Mal/Behav-160, Mal/Emogen-E, Mal/Basine-C [Sophos]11
Backdoor.Win32.Agent.afxk [Kaspersky Lab]9
Mal/Emogen-E, Mal/Packer, Mal/EncPk-E, Mal/Basine-C, Mal/Behav-160 [Sophos]9
Downloader [Symantec]8
Mal/Basine-A, Mal/Behav-160, Mal/Emogen-E, Mal/Behav-009, Mal/Basine-C [Sophos]8
Trojan.Dropper [Symantec]7
Mal/Emogen-E, Mal/Packer, Mal/Behav-160 [Sophos]6
Mal/Packer, Mal/Behav-160, Mal/Emogen-E [Sophos]6
Trojan-Dropper.Agent [Ikarus]6
Trojan-Dropper.Win32.Mudrop.bmg [Kaspersky Lab]6
Worm.Win32.AutoRun [Ikarus]5
Mal/Packer [Sophos]4
Mal/Packer, Mal/Behav-160, Mal/Emogen-E, Mal/Behav-009 [Sophos]4
Trojan.KillAV!sd6 [PC Tools]4
Worm:Win32/Autorun [Microsoft]4
Backdoor.Agent!sd6 [PC Tools]3
Bloodhound.Unknown [Symantec]3
Generic.dx [McAfee]3
Infostealer.Gampass [Symantec]3
Mal/Emogen-E, Mal/Basine-C [Sophos]3
Packed/NSPack [PC Tools]3
Suspicious.Graybird.1 [Symantec]3
Virus.Win32.Delf [Ikarus]3
Worm.Win32.AutoRun.ngr [Kaspersky Lab]3
Worm:Win32/Autorun.gen!DI [Microsoft]3
Backdoor.Win32.Hupigon.eko [Kaspersky Lab]2
Infostealer [Symantec]2
Mal/Basine-A, Mal/Behav-160, Mal/Emogen-E, Mal/Basine-C [Sophos]2
Mal/Packer, Mal/Emogen-E [Sophos]2
Mal/Packer, Mal/EncPk-E [Sophos]2
Suspicious.MH690 [Symantec]2
TROJ_PACKED.BR [Trend Micro]2
Virus.Win32.Induc.a [Kaspersky Lab]2
W32.SillyDC [Symantec]2
W32.SillyFDC [Symantec]2
Win-Trojan/Hupigon.Gen [AhnLab]2
Worm.AutoRun!sd5 [PC Tools]2
Worm.AutoRun!sd6 [PC Tools]2
Worm.Win32.AutoRun.mpq [Kaspersky Lab]2
Worm.Win32.AutoRun.q [Kaspersky Lab]2
WORM_FUBALCA.AP [Trend Micro]2
Backdoor.Win32.Bifrose.afgw [Kaspersky Lab]1
Backdoor.Win32.GrayBird.EJ [Ikarus]1
Downloader.Trojan [Symantec]1
Hacktool [Symantec]1
Mal/Behav-095 [Sophos]1
Mal/Behav-160 [Sophos]1
Mal/Behav-160, Mal/Emogen-E [Sophos]1
Mal/Behav-160, Mal/EncPk-F, Mal/Emogen-E, Mal/Behav-009, Mal/Basine-C [Sophos]1
Mal/Emogen-H [Sophos]1
Mal/Emogen-N, Mal/Behav-058 [Sophos]1
Mal/Packer, Mal/Basine-A, Mal/Basine-C, Mal/Behav-160, Mal/Emogen-E, Mal/Behav-009 [Sophos]1
Mal/Packer, Mal/Behav-024, Mal/Delf-M [Sophos]1
Mal/Packer, Mal/Behav-160, Mal/Emogen-E, Mal/Basine-C [Sophos]1
Mal/Packer, Mal/EncPk-E, Mal/Emogen-E [Sophos]1
not-a-virus:Server-FTP.Win32.Serv-U.5201 [Kaspersky Lab]1
Packed.Generic.147 [Symantec]1
Packed.Win32.Klone.ao [Ikarus]1
Packed.Win32.Klone.ao [Kaspersky Lab]1
Packed.Win32.Klone.d [Ikarus]1
PWS.Win32.QQpass.CZ [Ikarus]1
TROJ_DLOADER.SPW [Trend Micro]1
TROJ_DLOADR.ATS [Trend Micro]1
TROJ_MALOKP.A [Trend Micro]1
TROJ_NSPAK.A [Trend Micro]1
TROJ_SHEUR.BAV [Trend Micro]1
Trojan.DW [PC Tools]1
Trojan.Win32.Agent [Ikarus]1
Trojan.Win32.Agent.amon [Kaspersky Lab]1
Trojan.Win32.Agent.lww [Kaspersky Lab]1
Trojan.Win32.KillAV.dbz [Kaspersky Lab]1
Trojan.Win32.Regrun.aup [Kaspersky Lab]1
Trojan.Win32.VB.cbc [Kaspersky Lab]1
Trojan-Downloader.Win32.Delf.dcq [Kaspersky Lab]1
Trojan-Downloader.Win32.VB.amo [Kaspersky Lab]1
Trojan-Dropper.Win32.Agent.wpb [Kaspersky Lab]1
Trojan-Dropper.Win32.Mudrop [Ikarus]1
Trojan-Dropper.Win32.Mudrop.bdj [Kaspersky Lab]1
Trojan-Dropper.Win32.VB.hy [Ikarus]1
Worm.Win32.AutoRun.epq [Kaspersky Lab]1
Worm.Win32.AutoRun.lkl [Kaspersky Lab]1
Worm.Win32.AutoRun.lkq [Kaspersky Lab]1
Worm.Win32.AutoRun.lmz [Kaspersky Lab]1
Worm.Win32.AutoRun.lnd [Kaspersky Lab]1
Worm.Win32.AutoRun.lqn [Kaspersky Lab]1
Worm.Win32.AutoRun.lss [Kaspersky Lab]1
Worm.Win32.AutoRun.ltz [Kaspersky Lab]1
Worm.Win32.AutoRun.lws [Kaspersky Lab]1
Worm.Win32.AutoRun.mui [Kaspersky Lab]1

New Malware.dw [McAfee] has the following possible countries of origin:
OriginNumber of Incidents
China545
United Kingdom79
Brazil1
Germany1

New Malware.dw [McAfee] is known to be created as:
%ProgramFiles%\winrar\unrar.exe
%System%\0914\mm.exe
%System%\40790400.exe
%System%\dllcache\spoolsv.exe
%System%\dllcache\wuauclt.exe
%System%\duba.exe
%System%\mousie.exe
%System%\odbcjet.exe
%System%\rpcs.exe
%System%\sysbl.exe
%System%\systemm.com
%System%\trkws.exe
%System%\winnt.com
%System%\wuauclt.exe
%System%\wuauclt1.exe
%Windir%\alg.exe
%Windir%\iexpress.exe
%Windir%\java\classes\ccwinlogins.exe
%Windir%\services.exe
%Windir%\system\ymaws.exe
c:\auto.exe
c:\msdd.exe
c:\msdds.exe
c:\msdos.exe
c:\msrs.exe
Notes:
  • %ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
  • %System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
  • %Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.