Home Malware Programs Malware Mal/DarkShell-A

Mal/DarkShell-A

Posted: September 11, 2012

Threat Metric

Ranking: 8,480
Threat Level: 2/10
Infected PCs: 22,262
First Seen: September 11, 2012
Last Seen: October 11, 2023
OS(es) Affected: Windows

Mal/DarkShell-A is a malware threat that is distributed via a malevolent help (.HLP) file by means of social engineering. Internet users are fooled into opening the malevolent file and, thus, corrupting their PCs with a spyware keylogger. If the infected file is opened, an error message is shown. In the background, another malicious file is downloaded onto the computer system, which in turn creates one more dangerous file. Mal/DarkShell-A records keystrokes of the computer user and transmits them to cybercrooks.

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



Amministrazione.hlp File name: Amministrazione.hlp
Mime Type: unknown/hlp
Group: Malware file
Windows Security Center.exe File name: Windows Security Center.exe
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
RECYCLER.DLL File name: RECYCLER.DLL
File type: Dynamic link library
Mime Type: unknown/DLL
Group: Malware file
\Documents and Settings\username\Local Settings\Application Data\UserData.dat File name: \Documents and Settings\username\Local Settings\Application Data\UserData.dat
File type: Data file
Mime Type: unknown/dat
Group: Malware file

Additional Information

The following URL's were detected:
plaicecaught.com
Loading...