Home Malware Programs Worms Worm:Win32/Rebhip.A

Worm:Win32/Rebhip.A

Posted: May 18, 2010

Threat Metric

Threat Level: 5/10
Infected PCs: 2,551
First Seen: November 30, 2010
Last Seen: January 10, 2022
OS(es) Affected: Windows

Worm:Win32/Rebhip.A is a malicious computer worm that can propagate via removal USB drives, file-sharing networks and other network shared resources. Worm:Win32/Rebhip.A will inject a malicious code on explorer.exe to run itself on the compromised PC system. Use a proven malware remover to terminate Worm:Win32/Rebhip.A immediately when detected.

Worm:Win32/Rebhip.A

Aliases

Heuristic.BehavesLike.Win32.Backdoor.H [McAfee-GW-Edition]PSW.Generic8.ATEH [AVG]Trojan.Inject.22483 [DrWeb]Mal/KeyGen-M [Sophos]Trojan-Dropper.MSIL.StubRC.gid [Kaspersky]Win32.TRDrop.MSIL.St [eSafe]Win32:PUP-gen [PUP] [Avast]Generic Malware.hk!ats [McAfee]Crypt_c.OQB [AVG]W32/Buzus.LVMS!tr [Fortinet]Trojan-PWS.OnlineGames [Ikarus]Heuristic.LooksLike.Win32.Suspicious.R!89 [McAfee-GW-Edition]Trojan.Win32.Buzus.lvms [Kaspersky]Artemis!1BAB0361735A [McAfee]Trojan.Buzus.lvms [CAT-QuickHeal]
More aliases (2745)

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



%WINDIR%\SysWOW64\system32\windows.exe File name: windows.exe
Size: 419.32 KB (419328 bytes)
MD5: 5c122b916e0e1e1c2135486a86020387
Detection count: 96
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\SysWOW64\system32
Group: Malware file
Last Updated: March 29, 2013
%USERPROFILE%\Documents\Windows\AudioIntel.exe File name: AudioIntel.exe
Size: 1.03 MB (1038336 bytes)
MD5: 5555eec2932bc20787e9a918995e4762
Detection count: 33
File type: Executable File
Mime Type: unknown/exe
Path: %USERPROFILE%\Documents\Windows
Group: Malware file
Last Updated: November 26, 2012
%TEMP%\jusched.exe File name: jusched.exe
Size: 367.61 KB (367616 bytes)
MD5: 679cecd650d3f4204aa4a6c6884c3795
Detection count: 22
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: March 7, 2013
%APPDATA%\explorer\explorer.exe File name: explorer.exe
Size: 824.32 KB (824320 bytes)
MD5: 3f502bb3272d58407dd64eabc47f0159
Detection count: 21
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\explorer
Group: Malware file
Last Updated: January 21, 2013
%WINDIR%\SysWOW64\Win32\winlogons.exe File name: winlogons.exe
Size: 337.93 KB (337932 bytes)
MD5: e8c55501ae2711f9a3a75d1d93fd9558
Detection count: 21
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\SysWOW64\Win32
Group: Malware file
Last Updated: March 29, 2013
%PROGRAMFILES%\Microsofts\taskngr.exe File name: taskngr.exe
Size: 492.6 KB (492601 bytes)
MD5: ad2723b8320c7009a908e3216413ae53
Detection count: 12
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\Microsofts
Group: Malware file
Last Updated: June 13, 2021
%WINDIR%\tracing\svchost.exe File name: svchost.exe
Size: 1.23 MB (1236992 bytes)
MD5: 7f9ce1361c88d13cd30042f744bc8ae0
Detection count: 11
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\tracing
Group: Malware file
Last Updated: February 25, 2013
%APPDATA%\FacbookUpdate.exe File name: FacbookUpdate.exe
Size: 747.52 KB (747520 bytes)
MD5: 9a8f264c8ebc8c52614d6a3ac5f8c191
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: March 4, 2013
%WINDIR%\system32\zipfile\Hexor.exe File name: Hexor.exe
Size: 810.49 KB (810496 bytes)
MD5: 2bcddbb119ca340081d754c0538e5dd8
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\system32\zipfile
Group: Malware file
Last Updated: February 2, 2020
%SystemDrive%\directory\CyberGate\install\svchost.exe File name: svchost.exe
Size: 463.92 KB (463927 bytes)
MD5: 3ba93a13e092f7269def017ae7719683
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: %SystemDrive%\directory\CyberGate\install
Group: Malware file
Last Updated: May 2, 2013
%APPDATA%\window\sychost.exe File name: sychost.exe
Size: 590.54 KB (590547 bytes)
MD5: 737c4e8aacf18f87a00b8d86bf17f595
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\window
Group: Malware file
Last Updated: February 6, 2013
%APPDATA%\FacbookUpdate.exe File name: FacbookUpdate.exe
Size: 869.37 KB (869376 bytes)
MD5: b7a15c13ade4ba15ffe3a4d3d8cb645c
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%
Group: Malware file
Last Updated: February 6, 2013
%PROGRAMFILES%\Microsofts\taskngr.exe File name: taskngr.exe
Size: 316.3 KB (316303 bytes)
MD5: 6d0d4b18b2b5b50ec90521fa20d6bbce
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %PROGRAMFILES%\Microsofts
Group: Malware file
Last Updated: June 13, 2021
%APPDATA%\driverss32\explorer.exe File name: explorer.exe
Size: 684.03 KB (684034 bytes)
MD5: 090f23bb891bf098e3ff6f45cf220cf0
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\driverss32
Group: Malware file
Last Updated: April 8, 2013
%APPDATA%\install\notepad.exe File name: notepad.exe
Size: 347.02 KB (347022 bytes)
MD5: 61876f0bc5a8a05906208b21f7e94123
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\install
Group: Malware file
Last Updated: February 25, 2013
%APPDATA%\explorer.exe File name: explorer.exe
Size: 895.59 KB (895590 bytes)
MD5: f073fcf4bb5c5679380d2870b8738c00
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\explorer.exe
Group: Malware file
Last Updated: May 13, 2013
%APPDATA%\Adobecs5\Adobe.exe File name: Adobe.exe
Size: 943.92 KB (943920 bytes)
MD5: 25902ebe7a4dacd08e6ecdaafdc845dd
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\Adobecs5
Group: Malware file
Last Updated: February 22, 2013
%SystemDrive%\directory\CyberGate\rundll\iexplore.exe File name: iexplore.exe
Size: 988.16 KB (988160 bytes)
MD5: e3ac913fefa0c65e53d27897ad120239
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %SystemDrive%\directory\CyberGate\rundll
Group: Malware file
Last Updated: April 16, 2013
%APPDATA%\updateserver\serverupdate.exe File name: serverupdate.exe
Size: 2.15 MB (2154496 bytes)
MD5: 86982c83ef3a72b38d21d4326661195a
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\updateserver
Group: Malware file
Last Updated: May 8, 2013
%APPDATA%\install\smss.exe File name: smss.exe
Size: 12.82 MB (12823552 bytes)
MD5: 9d5d575cea884a426cbc287ff926a949
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %APPDATA%\install
Group: Malware file
Last Updated: April 16, 2013
%TEMP%\winini.exe File name: winini.exe
Size: 296.96 KB (296960 bytes)
MD5: 1cfb4c7af3834c28ffd54c95385040e2
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %TEMP%
Group: Malware file
Last Updated: April 16, 2013
%WINDIR%\System32\install\svchost.exe File name: svchost.exe
Size: 2.1 MB (2108939 bytes)
MD5: d067ab977d8693f6bb196bd0bd23415e
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\System32\install
Group: Malware file
Last Updated: April 22, 2013
%WINDIR%\Update\Svchost.exe File name: Svchost.exe
Size: 290.02 KB (290021 bytes)
MD5: b2b2577097716689338ee2c5dadf87de
Detection count: 5
File type: Executable File
Mime Type: unknown/exe
Path: %WINDIR%\Update
Group: Malware file
Last Updated: April 17, 2013

More files
Loading...