Home Malware Programs Trojans Mal/Behav-103

Mal/Behav-103

Posted: October 21, 2011

Threat Metric

Threat Level: 9/10
Infected PCs: 26
First Seen: October 21, 2011
Last Seen: May 22, 2023
OS(es) Affected: Windows

Mal/Behav-103 is a worm and a Trojan horse that exploits infected computers by installing additional types of harmful software, hijacking web browsers and creating instant message-based spam attacks. Although Mal/Behav-103 doesn't possess any unusual capabilities, Mal/Behav-103 should nonetheless be considered an extremely serious threat to the security and privacy of any PC. SpywareRemove.com malware research team has found that recent Mal/Behav-103 attacks have focused on spreading Mal/Behav-103 via fake picture e-mail attachments that portray themselves as images of Libyan dictator Gaddafi's death. However, despite this misrepresentation, if you avoid opening file attachments from suspicious sources, your computer should have minimal chance of being exposed to Mal/Behav-103. If your PC is unlucky enough to be infected by Mal/Behav-103, standard removal methods by appropriate anti-malware software can be used to delete Mal/Behav-103 without any risks.

Mal/Behav-103 - One Worm's Way of Profiting off of a Dictator's Demise

Mal/Behav-103, as is the case with any worm, can use networks and through removable storage drives to infect new computers, and these methods are the primary means of Mal/Behav-103 rapidly-infecting new computers on a local level. On a broader level, however, SpywareRemove.com malware experts have found Mal/Behav-103 pretending to be pictures of Moammar Gaddafi's death, distributed as .rar file attachments in e-mail messages. These messages have been seen to use the subject line 'Fw: AFP Photo News: Bloody Photos: Libya dictator Moammar Gadhafi's Death' and contain the following message:

Libya dictator Moammar Gadhafi's Death

Libyan dictator Moammar Gadhafi, the most wanted man in the world, has been killed, the country's rebel government claimed Oct. 20. The flamboyant tyrant who terrorized his country and much of the world during his 42 years of despotic rule was cornered by insurgents in the town of Sirte, where Gadhafi had been born and a stronghold of his supporters.

As long as you delete any Mal/Behav-103 e-mail messages that you receive, you should be safe from this method of Mal/Behav-103 infection. However, if you access a network-shared folder on a PC infected with Mal/Behav-103 or share storage devices with one, then your PC may also be infected without your knowledge. This places your computer in danger of the following attacks:

  • Other forms of harmful programs being installed, including Trojans, keyloggers, viruses and Remote Administration Tools.
  • Losing private information, such as Social Security numbers or bank account logins, due to spyware programs or browser hijackers that redirect you to phishing sites. Some versions of Mal/Behav-103 even specialize in stealing financial information in this fashion.
  • Having your computer's security reduced by setting changes to your firewall or network connection
  • Suffering from your PC being used to send out spam e-mail messages or Skype-based instant messages that propagate Mal/Behav-103 and other forms of harmful software.

Putting Mal/Behav-103 to the Same End That Libya's Dictator Suffered

SpywareRemove.com malware experts have found that many versions of Mal/Behav-103 can use multiple components to attack any given PC, and, like all worms, Mal/Behav-103 is capable of creating copies of itself in a widespread fashion. Because of these defenses and the generally-sophisticated nature of Mal/Behav-103 worms, you shouldn't try to delete Mal/Behav-103 without assistance if other options are available.

The suggested means of removing Mal/Behav-103 is usage of a good anti-malware program to scan your entire computer for all copies of Mal/Behav-103 and related infections. Since the variant of Mal/Behav-103 that's being distributed by the Gaddafi scam is quite new as of October 2011, you should also update your anti-malware program, if necessary, to make sure that it can identify Mal/Behav-103 and delete all of its components.

Aliases

Suspicion: unknown virus [AVG]W32/Dx.YLD!tr [Fortinet]Trojan.Win32.Genome [Ikarus]Trojan/Win32.HDC [AhnLab-V3]Trojan/Win32.Genome.gen [Antiy-AVL]Heuristic.BehavesLike.Win32.Suspicious-BAY.K [McAfee-GW-Edition]TR/Crypt.CFI.Gen [AntiVir]Trojan.Click2.9619 [DrWeb]Backdoor.Win32.Delf.~DF [Comodo]Gen:Trojan.Heur.fm0@sDlVhJci [BitDefender]Trojan.Win32.Genome.abnqx [Kaspersky]Win32:Malware-gen [Avast]Trojan.Gen.2 [Symantec]Artemis!37E6A7BDE5B8 [McAfee](Suspicious) - DNAScan [CAT-QuickHeal]
More aliases (53)
Loading...