Backdoor.Caphaw

By CagedTech in Backdoors

Threat Scorecard

Threat Level:	60 % (Medium)
Infected Computers:	437

First Seen:	August 21, 2012
Last Seen:	May 9, 2025
OS(es) Affected:	Windows

Aliases

15 security vendors flagged this file as malicious.

Anti-Virus Software	Detection
AVG	Generic32.AZKH
Microsoft	Backdoor:Win32/Caphaw
AntiVir	BDS/Caphaw.A
Kaspersky	HEUR:Trojan.Win32.Generic
Avast	Win32:LockScreen-VN [Trj]
AVG	Dropper.Generic6.AXES
TrendMicro	TROJ_GEN.RCBOCHV
AntiVir	BDS/Caphaw.DJ
DrWeb	Trojan.AVKill.21469
Kaspersky	Trojan-Dropper.Win32.Dycler.fe
Avast	Win32:MDE-E [Trj]
CAT-QuickHeal	TrojanDropper.Dycler.fe
Panda	Trj/Dtcontx.D
AVG	Generic32.BRNH
Kaspersky	Trojan.Win32.Bublik.apar

File System Details

Backdoor.Caphaw may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	SystemPropertiesAdvanced.exe	c18cbfce97a33fadc1a9785702e309e1	237
Name: SystemPropertiesAdvanced.exe MD5: c18cbfce97a33fadc1a9785702e309e1 Size: 675.84 KB (675840 bytes) Detections: 237 Type: Executable File Path: %APPDATA%\McAfee\Supportability\MVTLogs Group: Malware file Last Updated: April 8, 2017
2.	WSManHTTPConfig.exe	5b0b853baa55c4fddb8af0b00789f2e9	34
Name: WSManHTTPConfig.exe MD5: 5b0b853baa55c4fddb8af0b00789f2e9 Size: 192.51 KB (192512 bytes) Detections: 34 Type: Executable File Path: %APPDATA%\.minecraft\texturepacks\Hogwarts\__MACOSX Group: Malware file Last Updated: January 21, 2013
3.	PING.EXE	4c513524fa27777919920b71716164bf	26
Name: PING.EXE MD5: 4c513524fa27777919920b71716164bf Size: 212.99 KB (212992 bytes) Detections: 26 Type: Executable File Path: %APPDATA%\AnvSoft Group: Malware file Last Updated: May 8, 2013
4.	igxpun.exe	e21b35eb2dcb3aeb1f63bab1b96620e8	11
Name: igxpun.exe MD5: e21b35eb2dcb3aeb1f63bab1b96620e8 Size: 303.1 KB (303104 bytes) Detections: 11 Type: Executable File Path: %APPDATA%\Yahoo!\Messenger\dianeforsara\phillips_005Fpete Group: Malware file Last Updated: March 21, 2013
5.	chkdsk.exe	bd0985cea24257f531a5dd59fac3fd1f	10
Name: chkdsk.exe MD5: bd0985cea24257f531a5dd59fac3fd1f Size: 307.2 KB (307200 bytes) Detections: 10 Type: Executable File Path: %APPDATA%\Skype\nutbag2005\chatsync\85 Group: Malware file Last Updated: February 14, 2013
6.	StikyNot.exe	89a2cada933684f85f7186d98ce72465	9
Name: StikyNot.exe MD5: 89a2cada933684f85f7186d98ce72465 Size: 208.89 KB (208896 bytes) Detections: 9 Type: Executable File Path: %APPDATA%\Identities\{1053F337-539E-40EB-A0A1-D51B0E567E59} Group: Malware file Last Updated: May 1, 2013
7.	lpremove.exe	2b7780bea25e8ee9fc0cf788a7500bf4	8
Name: lpremove.exe MD5: 2b7780bea25e8ee9fc0cf788a7500bf4 Size: 303.1 KB (303104 bytes) Detections: 8 Type: Executable File Path: %APPDATA%\Skype\nutbag2005\chatsync\65 Group: Malware file Last Updated: January 8, 2013
8.	qprocess.exe	388b84f3ed7f620cd8727d03464dbab3	7
Name: qprocess.exe MD5: 388b84f3ed7f620cd8727d03464dbab3 Size: 303.1 KB (303104 bytes) Detections: 7 Type: Executable File Path: %APPDATA%\Motive\btbb\DataStore Group: Malware file Last Updated: February 11, 2013
9.	WerFault.exe	293cc1f379c4fc81a7584c40f7c82410	6
Name: WerFault.exe MD5: 293cc1f379c4fc81a7584c40f7c82410 Size: 360.44 KB (360448 bytes) Detections: 6 Type: Executable File Path: %APPDATA%\Skype\live#3avendas023_1\chatsync\12 Group: Malware file Last Updated: May 9, 2025
10.	findstr.exe	d8d5044b4111a3406629a8f2376f4bce	5
Name: findstr.exe MD5: d8d5044b4111a3406629a8f2376f4bce Size: 315.39 KB (315392 bytes) Detections: 5 Type: Executable File Path: %APPDATA%\Yahoo!\Messenger\dianeforsara\mssmo0cher4 Group: Malware file Last Updated: February 7, 2013
11.	cmstp.exe	4129d7026213dbdf223a6990a0900b15	4
Name: cmstp.exe MD5: 4129d7026213dbdf223a6990a0900b15 Size: 262.14 KB (262144 bytes) Detections: 4 Type: Executable File Path: %APPDATA%\uTorrent\apps Group: Malware file Last Updated: December 24, 2012
12.	rundll32.exe	e710d72294cc6e0f359f7435103210b8	4
Name: rundll32.exe MD5: e710d72294cc6e0f359f7435103210b8 Size: 262.14 KB (262144 bytes) Detections: 4 Type: Executable File Path: %APPDATA%\facemoods.com Group: Malware file Last Updated: December 17, 2012
13.	dialer.exe	ef0f8972f818a8926bfb053488414a2a	4
Name: dialer.exe MD5: ef0f8972f818a8926bfb053488414a2a Size: 360.44 KB (360448 bytes) Detections: 4 Type: Executable File Path: %APPDATA%\OpenOffice.org\3\user\config\soffice.cfg\modules\scalc Group: Malware file Last Updated: April 16, 2013
14.	wextract.exe	b47b484fa3d07d9e0243161235a45ccb	4
Name: wextract.exe MD5: b47b484fa3d07d9e0243161235a45ccb Size: 331.77 KB (331776 bytes) Detections: 4 Type: Executable File Path: %APPDATA%\Apple Computer Group: Malware file Last Updated: May 1, 2013
15.	dllhost.exe	74061117483885f7638136fd82dfd3d2	3
Name: dllhost.exe MD5: 74061117483885f7638136fd82dfd3d2 Size: 258.04 KB (258048 bytes) Detections: 3 Type: Executable File Path: %APPDATA%\Macromedia\Flash Player\#SharedObjects\FAQ4ZQUP\static.cdn-ec.viddler.com Group: Malware file Last Updated: May 15, 2013
16.	DWWIN.EXE	3dc99f61bac26c093f608853a4e396c5	2
Name: DWWIN.EXE MD5: 3dc99f61bac26c093f608853a4e396c5 Size: 196.6 KB (196608 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\6500 Series\scanned Group: Malware file Last Updated: October 12, 2012
17.	wermgr.exe	164755707e996a7c50ea180a488ecff9	2
Name: wermgr.exe MD5: 164755707e996a7c50ea180a488ecff9 Size: 299 KB (299008 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\Birdstep Technology Group: Malware file Last Updated: January 31, 2013
18.	RmClient.exe	34ba0a2633b3e28a9ce0b2b1627d76e6	2
Name: RmClient.exe MD5: 34ba0a2633b3e28a9ce0b2b1627d76e6 Size: 274.43 KB (274432 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\Skype\krishi.janday\chatsync\df Group: Malware file Last Updated: December 3, 2012
19.	drvinst.exe	c665be725f7642c4f03a2e755f0012b2	2
Name: drvinst.exe MD5: c665be725f7642c4f03a2e755f0012b2 Size: 286.72 KB (286720 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#ec.atdmt.com Group: Malware file Last Updated: December 3, 2012
20.	mshta.exe	7a962c5e3504ff363b01fd6f282d7c90	2
Name: mshta.exe MD5: 7a962c5e3504ff363b01fd6f282d7c90 Size: 290.81 KB (290816 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\Apple Computer\Safari\PubSub\Feeds Group: Malware file Last Updated: January 8, 2013
21.	DevicePairingWizard.exe	3e80e06ab629dabd751f6f30d5fcb499	2
Name: DevicePairingWizard.exe MD5: 3e80e06ab629dabd751f6f30d5fcb499 Size: 339.96 KB (339968 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\Macromedia\Flash Player\#SharedObjects\795KQ4BB\imgs.sapo.pt\sapovideo Group: Malware file Last Updated: March 29, 2013
22.	hwrcomp.exe	05235460f008546ca00d9d43253e073b	2
Name: hwrcomp.exe MD5: 05235460f008546ca00d9d43253e073b Size: 319.48 KB (319488 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\OfficeSuiteX\3\user\extensions\bundled\registry\com.sun.star.comp.deployment.configuration.PackageRegistryBackend\E794.tmp_ Group: Malware file Last Updated: February 7, 2013
23.	ucsvc.exe	b186bcb4af21f4101ec8fa2f2ea34f28	2
Name: ucsvc.exe MD5: b186bcb4af21f4101ec8fa2f2ea34f28 Size: 364.54 KB (364544 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\Apple Computer\iTunes\iPhone Updater Logs Group: Malware file Last Updated: April 22, 2013
24.	qwinsta.exe	fc8aa8c6ab8834874eb4470a5b8267a0	1
Name: qwinsta.exe MD5: fc8aa8c6ab8834874eb4470a5b8267a0 Size: 192.51 KB (192512 bytes) Detections: 1 Type: Executable File Path: %APPDATA%\alot\Resources\contextMenu\images Group: Malware file Last Updated: August 21, 2012
25.	rmactivate_ssp_isv.exe	0cde6e06e8deacbf0c8b64dc8eedfe11	1
Name: rmactivate_ssp_isv.exe MD5: 0cde6e06e8deacbf0c8b64dc8eedfe11 Size: 290.81 KB (290816 bytes) Detections: 1 Type: Executable File Path: c:\Users\<username>\appdata\roaming\mael Group: Malware file Last Updated: November 28, 2018
26.	file.exe	ca0403ea24fe2a7771b99cea55826c9b	0
Name: file.exe MD5: ca0403ea24fe2a7771b99cea55826c9b Size: 278.52 KB (278528 bytes) Detections: 0 Type: Executable File Group: Malware file

More files

EnigmaSoft’s Payment Processor Digital River GmbH Filing for Bankruptcy Does Not Impact SpyHunter Customers’ Anti-Malware Protection

Search

Change Region

Backdoor.Caphaw

Threat Scorecard

EnigmaSoft Threat Scorecard

Aliases

File System Details

Submit Comment

Related Posts

Backdoor.Caphaw.H

Backdoor.Caphaw.A

Trending

AAVE Airdrop Scam

Webheroes.store

DOGE Compensation To Fraud Victims Worldwide Email Scam

Most Viewed

How To Fix 'Printer Driver is Unavailable' Error

Discord Is Stuck on Gray Screen

Discord Shows Black Screen when Sharing Screen