Worm.Python.Agent
Posted: July 15, 2017
Threat Metric
The Threat Meter is a malware assessment that SpywareRemove.com's research team is able to
give every identifiable malware threat. Our Threat Meter includes several criteria based off of
specific malware threats to value their severity, reach and volume. The Threat Meter is able to give
you a numerical breakdown of each threat's initial Threat Level, Detection Count, Volume Count,
Trend Path and Percentage Impact. The overall ranking of each threat in the Threat Meter is a basic
breakdown of how all threats are ranked within our own extensive malware database. The scoring for
each specific malware threat can be easily compared to other emerging threats to draw a contrast in
its particular severity. The Threat Meter is a useful tool in the endeavor of seeking a solution to
remove a threat or pursue additional analytical research for all types of computer users.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Ranking: | 2,762 |
|---|---|
| Threat Level: | 5/10 |
| Infected PCs: | 30,241 |
| First Seen: | July 15, 2017 |
|---|---|
| Last Seen: | October 16, 2023 |
| OS(es) Affected: | Windows |
Worm.Python.Agent is a generic description that antivirus vendors use to categorize unknown threats that have displayed Worm-like behavior, and are written in the Python programming language. The main characteristic of computer worms is the fact that they are able to distribute themselves by injecting their payload in the victim's file automatically, or by dropping their components on removable storage devices. In other scenarios, threats detected as 'Worm.Python.Agent' may be able to access and infect shared network drives, therefore increasing the odds that other users on the same network may end up being infected.
Often, this detection might signal that your system is infected by a Trojan Backdoor that exhibits Worm-like behavior. Needless to say, this is a major issue since it poses a huge security threat – these backdoors might enable attackers to spy on you, collect files, and manipulate your computer in all kinds of way. In the meantime, the Worm module ensures that you might unknowingly infect the computers of friends and colleagues.
Recently, threats detected as 'Worm.Python.Agent' have been distributed online with the help of fraudulent email messages that claim to contain important data and updates about the Corona virus outbreak. We advise you to be extra careful about such emails, especially if they do not come from a trustworthy source.
Technical Details
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
The following files were created in the system:fdac22b28a1a3ff6cdbbc03621fbdfbd26c96dae2d8da1a5155a52a4b970bc63.dll
File name: fdac22b28a1a3ff6cdbbc03621fbdfbd26c96dae2d8da1a5155a52a4b970bc63.dllSize: 110.67 MB (110670740 bytes)
MD5: 285ea02854174e0373eb21710f9fa631
Detection count: 51
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
f3629aa4e8cab2a37f5f091713433497b932c1b905ce5ee1612119a16fb2eaa0.dll
File name: f3629aa4e8cab2a37f5f091713433497b932c1b905ce5ee1612119a16fb2eaa0.dllSize: 16.95 MB (16953142 bytes)
MD5: 017eda0818fb8bf4d00eb7130ade6d93
Detection count: 50
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
f6d399d120fa9538cb5c92cb7640fd02e1f75ef23ecc9f7b4dc7c0f4eee1bf87.dll
File name: f6d399d120fa9538cb5c92cb7640fd02e1f75ef23ecc9f7b4dc7c0f4eee1bf87.dllSize: 18.2 MB (18206997 bytes)
MD5: c40e9ccad5f955141a9b8c916016b25a
Detection count: 50
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
f8ef973955f80c7534411aa3e2e139309417b194ab8826aa2538a3d5440c1ed4.dll
File name: f8ef973955f80c7534411aa3e2e139309417b194ab8826aa2538a3d5440c1ed4.dllSize: 16.96 MB (16961189 bytes)
MD5: 22aa654d4df4ea3511bf26d1c4206177
Detection count: 50
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
fbbe95e4c7506970977d4f512a3d14a6898fb817ccab72fe6151ff6367ef6be6.dll
File name: fbbe95e4c7506970977d4f512a3d14a6898fb817ccab72fe6151ff6367ef6be6.dllSize: 11.66 MB (11661776 bytes)
MD5: 1f04130f006cfb928199e809c16d9fcf
Detection count: 50
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
fc9e14183f423833e422e8a0afc9563a06e62141f4cbaa4bbad63f7556c9eb52.dll
File name: fc9e14183f423833e422e8a0afc9563a06e62141f4cbaa4bbad63f7556c9eb52.dllSize: 17.35 MB (17354173 bytes)
MD5: 660e2aee8f90843f6fb3751d12fe6211
Detection count: 50
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
3037284254db7c7625c55e62b3cf1756d61ef13252d39328a85ef3328f92c7fb.dll
File name: 3037284254db7c7625c55e62b3cf1756d61ef13252d39328a85ef3328f92c7fb.dllSize: 17.93 MB (17931168 bytes)
MD5: e51647456693b5de9d6e79ebf242153a
Detection count: 26
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
2c62b07467f44b41d4cc5d262f6ed5023865be49d5fc6397fff18ab989625cc8.dll
File name: 2c62b07467f44b41d4cc5d262f6ed5023865be49d5fc6397fff18ab989625cc8.dllSize: 11.66 MB (11661751 bytes)
MD5: 74fb74e601141fb26f8237b08eaf3436
Detection count: 25
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
2ce25ce9423854ee62434c7d1c39c447b8275697a52a333d7faf7d29eaf7694f.dll
File name: 2ce25ce9423854ee62434c7d1c39c447b8275697a52a333d7faf7d29eaf7694f.dllSize: 16.79 MB (16796657 bytes)
MD5: d048f0539a6533aaad45ba65e2c570e0
Detection count: 25
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
2cf52f36e7955d6b91582886a0f3f57e6866fd9639156b3529fb7cf95833bdf8.dll
File name: 2cf52f36e7955d6b91582886a0f3f57e6866fd9639156b3529fb7cf95833bdf8.dllSize: 11.74 MB (11746531 bytes)
MD5: c23e48b9a1852c6b059939c68e46f80b
Detection count: 25
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
2d66e6a62436980e9ca1c20a3328bd9443bff30c1973741b5fc2c405fd88610a.dll
File name: 2d66e6a62436980e9ca1c20a3328bd9443bff30c1973741b5fc2c405fd88610a.dllSize: 11.7 MB (11700077 bytes)
MD5: d9f290f4e89190b22ea6acc518278705
Detection count: 25
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
2e648818d565bbb6c7d75c8422e0585474ef8935e8a96d729d86c1185f626acf.dll
File name: 2e648818d565bbb6c7d75c8422e0585474ef8935e8a96d729d86c1185f626acf.dllSize: 11.66 MB (11661765 bytes)
MD5: 0dec91b7e1903084cd03994ac60379a4
Detection count: 25
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
165776db86405be546ddca54fd8f61fd0b32835338f21450c59fb3bbfdb824dc.dll
File name: 165776db86405be546ddca54fd8f61fd0b32835338f21450c59fb3bbfdb824dc.dllSize: 19.27 MB (19276179 bytes)
MD5: 0db6e0b4907f484211d54bb3456a190d
Detection count: 24
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
1b10af44b46e160c29f5df9d18e20f4c652418c35df8dd8ddd44cb5fe266f5db.dll
File name: 1b10af44b46e160c29f5df9d18e20f4c652418c35df8dd8ddd44cb5fe266f5db.dllSize: 16.96 MB (16965738 bytes)
MD5: 2fa56b2ab4b789bef2916b0992e7a182
Detection count: 24
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
209b3ddf6e54adc9166caeb01cdd4de55f125a9a74013db282521a790e113832.dll
File name: 209b3ddf6e54adc9166caeb01cdd4de55f125a9a74013db282521a790e113832.dllSize: 16.96 MB (16969102 bytes)
MD5: 1227d12c93bc6ddcb7cda61d30a6b0fc
Detection count: 24
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
27eb2c8077ca04969145e1ac6009b43c9d7e8a985a6d6396cf995c33ca46b4b4.dll
File name: 27eb2c8077ca04969145e1ac6009b43c9d7e8a985a6d6396cf995c33ca46b4b4.dllSize: 17.11 MB (17115043 bytes)
MD5: 18f00346487206e762ac1886a2821943
Detection count: 24
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
2c304604086bf262c0a347be06b29c79d3473994d19ba7b93fd4b1ff464c4b41.dll
File name: 2c304604086bf262c0a347be06b29c79d3473994d19ba7b93fd4b1ff464c4b41.dllSize: 17.35 MB (17359460 bytes)
MD5: 20ed801f031508360ca4a82144d6ca37
Detection count: 24
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: November 11, 2022
C:\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\f01e5.exe
File name: f01e5.exeSize: 23.79 MB (23796187 bytes)
MD5: 3217beecdd50219e106b039a4eb1f662
Detection count: 23
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Group: Malware file
Last Updated: January 16, 2023
C:\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tmp566A.tmpg r.exe
File name: tmp566A.tmpg r.exeSize: 11.22 MB (11222699 bytes)
MD5: 4f972d5956b43955b9a0b7f215da76d6
Detection count: 14
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Group: Malware file
Last Updated: July 16, 2023
C:\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synapse Cracker.exe
File name: Synapse Cracker.exeSize: 17.89 MB (17891977 bytes)
MD5: e6669644bd9ea8c3acdf7a429b0dfa00
Detection count: 9
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Group: Malware file
Last Updated: November 26, 2022
C:\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DuckySploit.exe
File name: DuckySploit.exeSize: 21.17 MB (21170302 bytes)
MD5: 0af7af82500defa27a94d10d26fe226f
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Group: Malware file
Last Updated: November 26, 2022
C:\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Nitro Gen +Checker.exe
File name: Nitro Gen +Checker.exeSize: 10.22 MB (10222604 bytes)
MD5: 3862cfed4cf0c1dcfff667101dd17490
Detection count: 7
File type: Executable File
Mime Type: unknown/exe
Path: C:\Users\<username>\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Group: Malware file
Last Updated: November 26, 2022
2eff39848b503cef5851c596a5ec669b68f1c1115063b8749fe11090c5e028e3.dll
File name: 2eff39848b503cef5851c596a5ec669b68f1c1115063b8749fe11090c5e028e3.dllSize: 16.97 MB (16978192 bytes)
MD5: 7112a1006b204998a3587a4677c4478c
Detection count: 5
File type: Dynamic link library
Mime Type: unknown/dll
Group: Malware file
Last Updated: December 31, 2022
More files
Registry Modifications
The following newly produced Registry Values are:
Regexp file mask%HOMEDRIVE%\boots\syswin.exe
Regexp file mask%HOMEDRIVE%\boots\syswin.exe
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.