BKDR_METEO.HVN
There's a fake encryption add-on for the popular VoIP application Skype and this supposed encryption component is actually a backdoor Trojan known as BKDR_METEO.HVN, which itself also installs a Malware infection known as BKDR_ZAPCHAST.HVN. BKDR_METEO.HVN makes dangerous changes to the infected computer system, including deleting essential configuration files and making changes to the Windows Registry. While BKDR_METEO.HVN in itself is not enough to cause destructive harm to your computer system, BKDR_METEO.HVN enables criminals to install other malware on your computer system as well as gaining access to your system from a remote location.
Table of Contents
BKDR_METEO.HVN is Being Used in the Syrian Conflict
In the current armed conflict in Syria, there is no doubt that the rebel faction heavily relies on online communication, in particular messaging software like Skype and social networks like Twitter and Facebook. Because of this, there has been an increasing number of malware attacks designed to steal passwords for these accounts or to target computer systems heavily involved in these forms of communication.
The fact that BKDR_METEO.HVN is disguised as an encryption package for the Skype Messenger points to the possibility of BKDR_METEO.HVN being targeted towards computer users looking to protect their Skype conversations from the government. Due to the IP address that hosts BKDR_METEO.HVN (which has been used in similar attacks in the past), security researchers suspect that BKDR_METEO.HVN is part of a campaign by the Syrian government to hinder the efforts of the rebel faction. It is important to note that these kinds of encryption packages are not even necessary, since Skype already includes a highly effective encryption component by default.
The Trojan that is installed by BKDR_METEO.HVN is a familiar threat, version 3.3 of the DarkComet Trojan. Once installed, the people behind BKDR_METEO.HVN infection can gain complete access to the infected computer system due to the DarkComet's Remote Administration Tool. Even if you are not involved in the Syrian conflict, your computer system may still at risk of been infected by BKDR_METEO.HVN. In fact, it is very possible that other organizations may use this malware infection in the future to further their own agendas. If you have come into contact with a supposed "encryption package" for Skype, it is important to scan your computer system thoroughly to discard the possibility of a severe malware infection.
SpyHunter Detects & Remove BKDR_METEO.HVN
File System Details
| # | File Name | MD5 |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|---|
| 1. | Skype Encription v 2.1.exe | 79cdf420419a08f791752c759f8e0613 | 0 |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.