New AntiUSBWorm :: AutoIt3.exe, Skype.lnk, Google.lnk are in circulation
This worm gets downloaded from the Internet, Dropped by other malware, Propagates via removable drives. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
Creates two Folder on the Sysem
C:\Skypee
C:\Google
These are the following files inside the Skypee and Google folder:
-AutoIt3.exe
-Google.lnk
-Skypee.lnk
-googleupdate.a3x
It also creates shortcut (.LNK) files using folder names as filenames in folders in all drives.
This worm adds the registry entries to enable its automatic execution at every system startup.
AutoStart Entries :
AntiUsbWorm
AntiWormUpdate
It drops the files in the Windows Common Startup folder to enable its automatic execution at every system startup.
It also use internet to send and receive commands from a remote malicious user and the Stolen data is sent to the hackers location.
Detection and Cleaning by Net Protector Total Security :
- Other (42)
- Ransomware (128)
- Events and News (26)
- Features (45)
- Security (433)
- Tips (79)
- Google (22)
- Achievements (9)
- Products (33)
- Activation (7)
- Dealers (1)
- Bank Phishing (42)
- Malware Alerts (195)
- Cyber Attack (221)
- Data Backup (11)
- Data Breach (80)
- Phishing (139)
- Securty Tips (1)
- Browser Hijack (16)
- Adware (15)
- Email And Password (67)
- Android Security (56)
- Knoweldgebase (38)
- Botnet (15)
- Updates (3)
- Alert (71)
- Hacking (57)
- Social Media (7)
- vulnerability (54)
- Hacker (31)
- Spyware (8)
- Windows (6)
- Microsoft (21)
- Uber (1)
- YouTube (1)
- Trojan (2)
- Website hacks (3)
- Paytm (1)
- Credit card scam (1)
- Telegram (3)
- RAT (5)
- Bug (3)
- Twitter (2)
- Facebook (7)
- Banking Trojan (5)
- Mozilla (2)
- COVID-19 (5)
- Instagram (2)
- NPAV Announcement (5)
- IoT Security (1)
- Deals and Offers (1)
- Cloud Security (8)
- Offers (5)
- Gaming (1)
- FireFox (2)
- LinkedIn (2)
- WhatsApp (4)
- Amazon (1)
- DMart (1)
- Payment Risk (4)
- Occasion (2)
- firewall (1)
- Cloud malware (2)
- Cloud storage (2)
- Financial fraud (7)
- Impersonation phishing (1)
- DDoS (4)
- Smishing (2)
- Whale (0)
- Whale phishing (3)
- WINRAR (2)
- ZIP (2)