Worm.Skyper
Posted: March 13, 2013
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
Ranking: | 12,321 |
---|---|
Threat Level: | 5/10 |
Infected PCs: | 3,321 |
First Seen: | March 13, 2013 |
---|---|
Last Seen: | September 12, 2023 |
OS(es) Affected: | Windows |
Aliases
Skodna.BitCoinMiner.CL [AVG]Riskware/BitCoinMiner [Fortinet]not-a-virus:RiskTool.Win32.BitCoinMiner [Ikarus]not-a-virus:RiskTool.Win32.BitCoinMiner.chl [Kaspersky]RDN/Generic PUP.z!i [McAfee]Heuristic.LooksLike.Win32.SuspiciousPE.F [McAfee-GW-Edition]Trojan.Win32.Lebag.twb [Kaspersky](Suspicious) - DNAScan [CAT-QuickHeal]Skodna.Generic_r.CE [AVG]Riskware/OneStep [Fortinet]TR/Barys.5042.21 [AntiVir]TrojWare.Win32.Kryptik.ADMU [Comodo]Artemis!00ED7777ECA7 [McAfee]Adware.Zwangi.A [CAT-QuickHeal]W32/ZAccess.BPYW!tr.bdr [Fortinet]
More aliases (157)
More aliases (157)
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:E:\De pe D laptop Asus EEEPC\Kituri\WI-FI Spart\Wireless Hacking\Aircrack\aircrack-ng.exe
File name: aircrack-ng.exeSize: 226.15 KB (226150 bytes)
MD5: 0e9e329a09f7ba0b7ac8af4b2fe28280
Detection count: 611
File type: Executable File
Mime Type: unknown/exe
Path: E:\De pe D laptop Asus EEEPC\Kituri\WI-FI Spart\Wireless Hacking\Aircrack\aircrack-ng.exe
Group: Malware file
Last Updated: September 12, 2023
U:\Recovered data 05-13 11_00_07\Resultado de Escaneo Profundo\ParticiĆ³n Existente2(NTFS)\____Baja 1\CommView.for.WiFi.v5.2.484\crack\cv.exe
File name: cv.exeSize: 1.51 MB (1516032 bytes)
MD5: c870ab1b8718f29b695d451411e19246
Detection count: 222
File type: Executable File
Mime Type: unknown/exe
Path: U:\Recovered data 05-13 11_00_07\Resultado de Escaneo Profundo\ParticiĆ³n Existente2(NTFS)\____Baja 1\CommView.for.WiFi.v5.2.484\crack\cv.exe
Group: Malware file
Last Updated: September 9, 2023
C:\Users\<username>\Downloads\agsetup183se.exe
File name: agsetup183se.exeSize: 4.56 MB (4560221 bytes)
MD5: aafb5f2fee11baf89bfd7feef24773b3
Detection count: 94
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\Downloads\agsetup183se.exe
Group: Malware file
Last Updated: June 2, 2023
IMG0540250-JPG.scr
File name: IMG0540250-JPG.scrSize: 224.25 KB (224256 bytes)
MD5: 4255d32dfbe4b0ccf2d31ebdeade625a
Detection count: 82
Mime Type: unknown/scr
Group: Malware file
Last Updated: March 13, 2013
%SystemDrive%\Documents and Settings\scox\Local Settings\Application Data\ccc.exe
File name: ccc.exeSize: 235.52 KB (235520 bytes)
MD5: 74937e4ca6e106db450060323f4e9a8f
Detection count: 73
File type: Executable File
Mime Type: unknown/exe
Path: %SystemDrive%\Documents and Settings\scox\Local Settings\Application Data
Group: Malware file
Last Updated: March 21, 2013
IMG0540250-JPG.scr
File name: IMG0540250-JPG.scrSize: 607.8 KB (607809 bytes)
MD5: 1ee6286f4ac9e39813a823e37d2253e8
Detection count: 62
Mime Type: unknown/scr
Group: Malware file
Last Updated: March 13, 2013
IMG0540250-JPG.scr
File name: IMG0540250-JPG.scrSize: 657.76 KB (657760 bytes)
MD5: 61abb8eab44cd5d529825838647c5d09
Detection count: 53
Mime Type: unknown/scr
Group: Malware file
Last Updated: March 23, 2019
%WINDIR%\Help\transrich.exe
File name: transrich.exeSize: 445.3 KB (445303 bytes)
MD5: 0934abbd4857b75aed0eac8ae29ba541
Detection count: 40
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\Help
Group: Malware file
Last Updated: November 5, 2019
%SystemDrive%\RECYCLER\S-1-5-21-1264899765-3919599547-3682583846-1006\$c12adc9004c4b717a3f5e19e304b78b8\n.
File name: n.Size: 69.12 KB (69120 bytes)
MD5: 6e6ee4d6044550fb3e1e89a5aaea01cd
Detection count: 37
Path: %SystemDrive%\RECYCLER\S-1-5-21-1264899765-3919599547-3682583846-1006\$c12adc9004c4b717a3f5e19e304b78b8
Group: Malware file
Last Updated: March 21, 2013
%APPDATA%\Mining\coin-miner.exe
File name: coin-miner.exeSize: 55.29 KB (55296 bytes)
MD5: f1526c86a314dae9833c8bd7e4d60343
Detection count: 33
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Mining
Group: Malware file
Last Updated: March 21, 2013
%LOCALAPPDATA%\Lollipop\Lollipop.exe
File name: Lollipop.exeSize: 1.9 MB (1902592 bytes)
MD5: 914c415a4965e363fe97f3e31ec007d1
Detection count: 32
File type: Executable File
Mime Type: unknown/exe
Path: %LOCALAPPDATA%\Lollipop
Group: Malware file
Last Updated: March 21, 2013
%TEMP%\gnstvn.exe
File name: gnstvn.exeSize: 43.65 KB (43653 bytes)
MD5: 799954ca0a8359b741774ba3a5e3417c
Detection count: 28
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: March 21, 2013
%WINDIR%\system32\31337\spoolsv.exe
File name: spoolsv.exeSize: 540.67 KB (540672 bytes)
MD5: 015e642884834f402e471d30e93d0f0d
Detection count: 19
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\31337
Group: Malware file
Last Updated: March 21, 2013
%ALLUSERSPROFILE%\LxVqIjnyUdwf.exe
File name: LxVqIjnyUdwf.exeSize: 303.61 KB (303616 bytes)
MD5: b0803da510e4f529b403cb80717b74c6
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%
Group: Malware file
Last Updated: March 21, 2013
%PROGRAMFILES%\OpenGl_4.3\Mesa.exe
File name: Mesa.exeSize: 604.16 KB (604160 bytes)
MD5: e205ac485452790a786cc2b395b8a282
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\OpenGl_4.3
Group: Malware file
Last Updated: March 21, 2013
%LOCALAPPDATA%\sqxxfhoj\bwmkphxw.exe
File name: bwmkphxw.exeSize: 96.06 KB (96064 bytes)
MD5: 2016f08922ae580e5b056fab5c9c748a
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %LOCALAPPDATA%\sqxxfhoj
Group: Malware file
Last Updated: March 21, 2013
%ALLUSERSPROFILE%\Datos de programa\mgqWPISksNJc.exe
File name: mgqWPISksNJc.exeSize: 302.08 KB (302080 bytes)
MD5: bd283e57976f41e2dce3a3c90c43c50c
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %ALLUSERSPROFILE%\Datos de programa
Group: Malware file
Last Updated: March 21, 2013
%APPDATA%\Apple Computer\iTunes\iPhone Software Updates\asr_fmt.exe
File name: asr_fmt.exeSize: 364.54 KB (364544 bytes)
MD5: a72cb071d123117cea717cbd91b8a481
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Apple Computer\iTunes\iPhone Software Updates
Group: Malware file
Last Updated: March 21, 2013
Registry Modifications
The following newly produced Registry Values are:
Regexp file mask%TEMP%\skyper.vbs%TMP%\noir.artHKEY..\..\..\..{RegistryKeys}Software\Microsoft\Windows\CurrentVersion\Run\Microsoft Windows Manager
Regexp file mask%TEMP%\skyper.vbs%TMP%\noir.artHKEY..\..\..\..{RegistryKeys}Software\Microsoft\Windows\CurrentVersion\Run\Microsoft Windows Manager
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.