HackTool:Win32/Mailpassview

By SpideyMan in Malware

Threat Scorecard

Ranking:	2,360
Threat Level:	10 % (Normal)
Infected Computers:	8,841

First Seen:	December 8, 2010
Last Seen:	March 24, 2024
OS(es) Affected:	Windows

HackTool:Win32/Mailpassview is a freeware program that is used to show passwords for numerous email programs including Microsoft Outlook, Microsoft Outlook Express, Windows Live Mail, Windows Mail, etc. HackTool:Win32/Mailpassview has a graphical user interface (GUI), but can be executed without being shown to the infected computer user by using command line switches to save the gathered password information to various formats. HackTool:Win32/Mailpassview is used by Trojan:Win32/Nedsym in order to steal passwords from the infected computer users. HackTool:Win32/Mailpassview is used by cybercriminals to attack numerous email accounts and steal personal information in order to use innocent PC users' accounts for mass spamming campaigns. You should uninstall HackTool:Win32/Mailpassview as quickly as possible.

Table of Contents

Aliases

15 security vendors flagged this file as malicious.

Anti-Virus Software	Detection
Fortinet	W32/Generic!tr
Ikarus	Trojan-Banker.Win32.Banbra
AntiVir	SPR/Tool.Mailpassview.500
ClamAV	WIN.Spy.Banker-266
Antiy-AVL	PSWTool/Win32.ProductKey
DrWeb	Tool.PassSteel.945
Comodo	ApplicUnwnt.Win32.PSWTool.ProductKey.~SIA
Kaspersky	not-a-virus:PSWTool.Win32.ProductKey.cq
McAfee	Tool-PassView
AVG	Dropper.Generic7.AMLO
Fortinet	W32/Jorik_Chisburg.ATE!tr
Ikarus	HackTool.Win32.Mailpassview
McAfee-GW-Edition	Heuristic.LooksLike.Win32.Suspicious.E
AntiVir	TR/Dropper.MSIL.Gen2
DrWeb	Trojan.DownLoader7.54566

SpyHunter Detects & Remove HackTool:Win32/Mailpassview

File System Details

HackTool:Win32/Mailpassview may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	ProduKey.exe	08012b4107432873710958ec45c7e1ac	588
Name: ProduKey.exe MD5: 08012b4107432873710958ec45c7e1ac Size: 69.12 KB (69120 bytes) Detections: 588 Type: Executable File Path: %SYSTEMDRIVE%\downloads\NewsLeecher\produkey_dutch\ProduKey.exe Group: Malware file Last Updated: March 17, 2024
2.	mailpv.exe	db19075b6a18a679cc10f4a6a8be7b3d	338
Name: mailpv.exe MD5: db19075b6a18a679cc10f4a6a8be7b3d Size: 98.81 KB (98816 bytes) Detections: 338 Type: Executable File Path: C:\Users\<username>\AppData\Roaming\system32\pt\mailpv.exe Group: Malware file Last Updated: March 24, 2024
3.	mailpv.exe	fcc8aca8cbf9226ea65198530118a012	37
Name: mailpv.exe MD5: fcc8aca8cbf9226ea65198530118a012 Size: 52.22 KB (52224 bytes) Detections: 37 Type: Executable File Path: C:\Archiwum\Biblioteka\Książki - MOJE\Wywiad Gospodarczy\Materiał programy\mailpv\mailpv.exe Group: Malware file Last Updated: February 14, 2024
4.	produkey_setup.exe	37cd2136411c498d7db016b25399f0de	20
Name: produkey_setup.exe MD5: 37cd2136411c498d7db016b25399f0de Size: 115.26 KB (115269 bytes) Detections: 20 Type: Executable File Path: I:\bleu_pearl\cartelle varie da desk\PRIMA NOTA SETTEMBRE OTTOBRE\Produkey\produkey_setup.exe Group: Malware file Last Updated: November 11, 2023
5.	mailpv_setup.exe	a3e4d4572fa0e1d2291ead6eea6326f8	10
Name: mailpv_setup.exe MD5: a3e4d4572fa0e1d2291ead6eea6326f8 Size: 127.44 KB (127442 bytes) Detections: 10 Type: Executable File Path: c:\Users\<username>\appdata\local\temp\scoped_dir2604_1194007632\mailpv_setup.exe Group: Malware file Last Updated: August 20, 2022
6.	Java.exe	e85fd99c90bcbae12ef285200b7cf645	7
Name: Java.exe MD5: e85fd99c90bcbae12ef285200b7cf645 Size: 357.88 KB (357888 bytes) Detections: 7 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: April 16, 2013
7.	brXZVDgUbgP.exe	b9e79d66904faa76938a6a683f1daa2f	3
Name: brXZVDgUbgP.exe MD5: b9e79d66904faa76938a6a683f1daa2f Size: 671.23 KB (671232 bytes) Detections: 3 Type: Executable File Path: %APPDATA% Group: Malware file Last Updated: January 30, 2012
8.	DRIVERSATA.exe	161d6f0c6fb8494ca638b798a5755079	2
Name: DRIVERSATA.exe MD5: 161d6f0c6fb8494ca638b798a5755079 Size: 1.51 MB (1517056 bytes) Detections: 2 Type: Executable File Path: %APPDATA%\SunOS Group: Malware file Last Updated: January 14, 2013
9.	sof.exe	813e75848f38ee4d4d564beeed0e720d	2
Name: sof.exe MD5: 813e75848f38ee4d4d564beeed0e720d Size: 536.57 KB (536576 bytes) Detections: 2 Type: Executable File Path: %TEMP% Group: Malware file Last Updated: January 5, 2013
10.	mailpv_setup.exe	ac1ce510d8a7ab9d2a3126c0883b8eb4	1
Name: mailpv_setup.exe MD5: ac1ce510d8a7ab9d2a3126c0883b8eb4 Size: 123.58 KB (123589 bytes) Detections: 1 Type: Executable File Path: %ALLUSERSPROFILE%\Documents\MyDocs\Miscellaneous\_Computer\Email 20100121\Email Password Recovery freeware Group: Malware file Last Updated: December 8, 2010
11.	poe.exe	6c1c04087f37b6b176a0c35cc9d5cfd0	1
Name: poe.exe MD5: 6c1c04087f37b6b176a0c35cc9d5cfd0 Size: 516.6 KB (516608 bytes) Detections: 1 Type: Executable File Path: %APPDATA% Group: Malware file Last Updated: January 5, 2013
12.	4572.exe	aed1601f3f936de9174dcfd9a46c3440	1
Name: 4572.exe MD5: aed1601f3f936de9174dcfd9a46c3440 Size: 595.45 KB (595456 bytes) Detections: 1 Type: Executable File Path: %APPDATA% Group: Malware file Last Updated: February 6, 2013
13.	keygen.exe
Name: keygen.exe Type: Executable File Group: Malware file
14.	T.R gdata.exe
Name: T.R gdata.exe Type: Executable File Group: Malware file
15.	fltlib.dll
Name: fltlib.dll Type: Dynamic link library Group: Malware file
16.	keymaker.exe
Name: keymaker.exe Type: Executable File Group: Malware file
17.	zw7pekms.exe
Name: zw7pekms.exe Type: Executable File Group: Malware file
18.	Office activator.exe
Name: Office activator.exe Type: Executable File Group: Malware file
19.	adbcd.dll
Name: adbcd.dll Type: Dynamic link library Group: Malware file
20.	KMService.exe
Name: KMService.exe Type: Executable File Group: Malware file
21.	KeyGen (FFF).exe
Name: KeyGen (FFF).exe Type: Executable File Group: Malware file
22.	OfficeResetAuto.exe
Name: OfficeResetAuto.exe Type: Executable File Group: Malware file
23.	ashampkeygen.exe
Name: ashampkeygen.exe Type: Executable File Group: Malware file
24.	AutoKMS.exe
Name: AutoKMS.exe Type: Executable File Group: Malware file

1 Comment

Frank McCaffery 8 years ago Reply

I am only gretful that MS detected this trojan as soon as it was loaded. Goodneess knows what trouble with my A/C it could have caused by spamming their emails via ME. With all the facilities available today, I'm surprised that the actual perpetrators cannot be traced back to the first server from the culprit, then a detection placed on the server to catch the culprits.

Thanks again MS.

Frank McCaffery

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

HackTool:Win32/Mailpassview

Threat Scorecard

EnigmaSoft Threat Scorecard

Aliases

SpyHunter Detects & Remove HackTool:Win32/Mailpassview

File System Details

1 Comment

Submit Comment

Trending

Rujba.co.in

Snadsfit.com

Videovor.com

Most Viewed

Discord Shows Black Screen when Sharing Screen

How To Fix 'Printer Driver is Unavailable' Error

What is Msedge.exe?