Backdoor.Caphaw

By CagedTech in Backdoors

Threat Scorecard

Threat Level:	60 % (Medium)
Infected Computers:	431

First Seen:	August 21, 2012
Last Seen:	January 22, 2020
OS(es) Affected:	Windows

Aliases

15 security vendors flagged this file as malicious.

Anti-Virus Software	Detection
AVG	Generic32.AZKH
Microsoft	Backdoor:Win32/Caphaw
AntiVir	BDS/Caphaw.A
Kaspersky	HEUR:Trojan.Win32.Generic
Avast	Win32:LockScreen-VN [Trj]
AVG	Dropper.Generic6.AXES
TrendMicro	TROJ_GEN.RCBOCHV
AntiVir	BDS/Caphaw.DJ
DrWeb	Trojan.AVKill.21469
Kaspersky	Trojan-Dropper.Win32.Dycler.fe
Avast	Win32:MDE-E [Trj]
CAT-QuickHeal	TrojanDropper.Dycler.fe
Panda	Trj/Dtcontx.D
AVG	Generic32.BRNH
Kaspersky	Trojan.Win32.Bublik.apar

File System Details

Backdoor.Caphaw may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	SystemPropertiesAdvanced.exe	c18cbfce97a33fadc1a9785702e309e1	237
Name: SystemPropertiesAdvanced.exe MD5: c18cbfce97a33fadc1a9785702e309e1 Size: 675.84 KB (675840 bytes) Detections: 237 Type: Executable File Path: %APPDATA%\McAfee\Supportability\MVTLogs Group: Malware file Last Updated: April 8, 2017
2.	PING.EXE	4c513524fa27777919920b71716164bf	26
Name: PING.EXE MD5: 4c513524fa27777919920b71716164bf Size: 212.99 KB (212992 bytes) Detections: 26 Type: Executable File Path: %APPDATA%\AnvSoft Group: Malware file Last Updated: May 8, 2013
3.	file.exe	5f752bf79f79de9c67b6409034533f94	12
Name: file.exe MD5: 5f752bf79f79de9c67b6409034533f94 Size: 421.88 KB (421888 bytes) Detections: 12 Type: Executable File Group: Malware file Last Updated: January 22, 2020
4.	igxpun.exe	e21b35eb2dcb3aeb1f63bab1b96620e8	11
Name: igxpun.exe MD5: e21b35eb2dcb3aeb1f63bab1b96620e8 Size: 303.1 KB (303104 bytes) Detections: 11 Type: Executable File Path: %APPDATA%\Yahoo!\Messenger\dianeforsara\phillips_005Fpete Group: Malware file Last Updated: March 21, 2013
5.	chkdsk.exe	bd0985cea24257f531a5dd59fac3fd1f	10
Name: chkdsk.exe MD5: bd0985cea24257f531a5dd59fac3fd1f Size: 307.2 KB (307200 bytes) Detections: 10 Type: Executable File Path: %APPDATA%\Skype\nutbag2005\chatsync\85 Group: Malware file Last Updated: February 14, 2013
6.	lpremove.exe	2b7780bea25e8ee9fc0cf788a7500bf4	8
Name: lpremove.exe MD5: 2b7780bea25e8ee9fc0cf788a7500bf4 Size: 303.1 KB (303104 bytes) Detections: 8 Type: Executable File Path: %APPDATA%\Skype\nutbag2005\chatsync\65 Group: Malware file Last Updated: January 8, 2013
7.	qprocess.exe	388b84f3ed7f620cd8727d03464dbab3	7
Name: qprocess.exe MD5: 388b84f3ed7f620cd8727d03464dbab3 Size: 303.1 KB (303104 bytes) Detections: 7 Type: Executable File Path: %APPDATA%\Motive\btbb\DataStore Group: Malware file Last Updated: February 11, 2013
8.	findstr.exe	d8d5044b4111a3406629a8f2376f4bce	5
Name: findstr.exe MD5: d8d5044b4111a3406629a8f2376f4bce Size: 315.39 KB (315392 bytes) Detections: 5 Type: Executable File Path: %APPDATA%\Yahoo!\Messenger\dianeforsara\mssmo0cher4 Group: Malware file Last Updated: February 7, 2013
9.	cmstp.exe	4129d7026213dbdf223a6990a0900b15	4
Name: cmstp.exe MD5: 4129d7026213dbdf223a6990a0900b15 Size: 262.14 KB (262144 bytes) Detections: 4 Type: Executable File Path: %APPDATA%\uTorrent\apps Group: Malware file Last Updated: December 24, 2012
10.	rundll32.exe	e710d72294cc6e0f359f7435103210b8	4
Name: rundll32.exe MD5: e710d72294cc6e0f359f7435103210b8 Size: 262.14 KB (262144 bytes) Detections: 4 Type: Executable File Path: %APPDATA%\facemoods.com Group: Malware file Last Updated: December 17, 2012
11.	dialer.exe	ef0f8972f818a8926bfb053488414a2a	4
Name: dialer.exe MD5: ef0f8972f818a8926bfb053488414a2a Size: 360.44 KB (360448 bytes) Detections: 4 Type: Executable File Path: %APPDATA%\OpenOffice.org\3\user\config\soffice.cfg\modules\scalc Group: Malware file Last Updated: April 16, 2013
12.	wextract.exe	b47b484fa3d07d9e0243161235a45ccb	4
Name: wextract.exe MD5: b47b484fa3d07d9e0243161235a45ccb Size: 331.77 KB (331776 bytes) Detections: 4 Type: Executable File Path: %APPDATA%\Apple Computer Group: Malware file Last Updated: May 1, 2013
13.	dllhost.exe	74061117483885f7638136fd82dfd3d2	3
Name: dllhost.exe MD5: 74061117483885f7638136fd82dfd3d2 Size: 258.04 KB (258048 bytes) Detections: 3 Type: Executable File Path: %APPDATA%\Macromedia\Flash Player\#SharedObjects\FAQ4ZQUP\static.cdn-ec.viddler.com Group: Malware file Last Updated: May 15, 2013
14.	WerFault.exe	293cc1f379c4fc81a7584c40f7c82410	3
Name: WerFault.exe MD5: 293cc1f379c4fc81a7584c40f7c82410 Size: 360.44 KB (360448 bytes) Detections: 3 Type: Executable File Path: %APPDATA%\Skype\live#3avendas023_1\chatsync\12 Group: Malware file Last Updated: December 10, 2019
15.	wermgr.exe	164755707e996a7c50ea180a488ecff9	2
Name: wermgr.exe MD5: 164755707e996a7c50ea180a488ecff9 Size: 299 KB (299008 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\Birdstep Technology Group: Malware file Last Updated: January 31, 2013
16.	RmClient.exe	34ba0a2633b3e28a9ce0b2b1627d76e6	2
Name: RmClient.exe MD5: 34ba0a2633b3e28a9ce0b2b1627d76e6 Size: 274.43 KB (274432 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\Skype\krishi.janday\chatsync\df Group: Malware file Last Updated: December 3, 2012
17.	drvinst.exe	c665be725f7642c4f03a2e755f0012b2	2
Name: drvinst.exe MD5: c665be725f7642c4f03a2e755f0012b2 Size: 286.72 KB (286720 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#ec.atdmt.com Group: Malware file Last Updated: December 3, 2012
18.	mshta.exe	7a962c5e3504ff363b01fd6f282d7c90	2
Name: mshta.exe MD5: 7a962c5e3504ff363b01fd6f282d7c90 Size: 290.81 KB (290816 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\Apple Computer\Safari\PubSub\Feeds Group: Malware file Last Updated: January 8, 2013
19.	DevicePairingWizard.exe	3e80e06ab629dabd751f6f30d5fcb499	2
Name: DevicePairingWizard.exe MD5: 3e80e06ab629dabd751f6f30d5fcb499 Size: 339.96 KB (339968 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\Macromedia\Flash Player\#SharedObjects\795KQ4BB\imgs.sapo.pt\sapovideo Group: Malware file Last Updated: March 29, 2013
20.	hwrcomp.exe	05235460f008546ca00d9d43253e073b	2
Name: hwrcomp.exe MD5: 05235460f008546ca00d9d43253e073b Size: 319.48 KB (319488 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\OfficeSuiteX\3\user\extensions\bundled\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\E794.tmp_ Group: Malware file Last Updated: February 7, 2013
21.	ucsvc.exe	b186bcb4af21f4101ec8fa2f2ea34f28	2
Name: ucsvc.exe MD5: b186bcb4af21f4101ec8fa2f2ea34f28 Size: 364.54 KB (364544 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\Apple Computer\iTunes\iPhone Updater Logs Group: Malware file Last Updated: April 22, 2013
22.	rmactivate_ssp_isv.exe	0cde6e06e8deacbf0c8b64dc8eedfe11	1
Name: rmactivate_ssp_isv.exe MD5: 0cde6e06e8deacbf0c8b64dc8eedfe11 Size: 290.81 KB (290816 bytes) Detections: 1 Type: Executable File Path: c:\Users\<username>\appdata\roaming\mael Group: Malware file Last Updated: November 28, 2018
23.	file.exe	0421d581a8be33099b5b140bbd2d97f0	0
Name: file.exe MD5: 0421d581a8be33099b5b140bbd2d97f0 Size: 258.04 KB (258048 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: December 15, 2016
24.	file.exe	1708151737c64f3c3f82f22e3a14a5f6	0
Name: file.exe MD5: 1708151737c64f3c3f82f22e3a14a5f6 Size: 258.04 KB (258048 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: October 9, 2017
25.	file.exe	eb23678cfe1450222330ba6f3441d20e	0
Name: file.exe MD5: eb23678cfe1450222330ba6f3441d20e Size: 294.91 KB (294912 bytes) Detections: 0 Type: Executable File Group: Malware file
26.	file.exe	e63fead91fe788dac57601d2c77713f9	0
Name: file.exe MD5: e63fead91fe788dac57601d2c77713f9 Size: 28.03 KB (28032 bytes) Detections: 0 Type: Executable File Group: Malware file
27.	file.exe	ca0403ea24fe2a7771b99cea55826c9b	0
Name: file.exe MD5: ca0403ea24fe2a7771b99cea55826c9b Size: 278.52 KB (278528 bytes) Detections: 0 Type: Executable File Group: Malware file

More files

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

Backdoor.Caphaw

Threat Scorecard

EnigmaSoft Threat Scorecard

Aliases

File System Details

Submit Comment

Related Posts

Backdoor.Caphaw.H

Backdoor.Caphaw.A

Trending

PracticalRemote

Triovideo.ru

Elibe Ransomware

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen