Threat Database Viruses Virus:Win32/Virut.gen!AO

Virus:Win32/Virut.gen!AO

By LoneStar in Viruses

Threat Scorecard

Ranking: 8,598
Threat Level: 80 % (High)
Infected Computers: 1,562
First Seen: May 14, 2013
Last Seen: September 19, 2023
OS(es) Affected: Windows

Virus:Win32/Virut.gen!AO is a virus, which enables cybercriminals to obtain access to a compromised PC. Virus:Win32/Virut.gen!AO drops and executes malevolent files and resricts a target computer user from visiting security-related websites. Virus:Win32/Virut.gen!AO is distributed through corrupted networks and removable drives such as USB sticks, floppy disks or flash card readers. Virus:Win32/Virut.gen!AO searches for all the removable drives on the corrupted PC from drive D:\ to Z:\. When Virus:Win32/Virut.gen!AO is finds a removable drive, it installs a copy of itself with a randomly created filename. Virus:Win32/Virut.gen!AO can destroy some corrupted files and does not allow to repair them. Virus:Win32/Virut.gen!AO blocks programs from operating appropriately or makes them crash when executed. Virus:Win32/Virut.gen!AO is a polymorphic file infector, which embeds a malevolent code into every .EXE and .SCR file that it finds on the attacked PC. While being executed, Virus:Win32/Virut.gen!AO embeds a malevolent code into the 'WINLOGON.exe' process. Virus:Win32/Virut.gen!AO creates the registry entry so that the virus is embedded on the authorized program list of the firewall.

File System Details

Virus:Win32/Virut.gen!AO may create the following file(s):
# File Name Detections
1. VPyKrBDo.exe
2. HDWXPx64.exe
3. AjsCEJmF.exe
4. XjKBISPV.exe

Registry Details

Virus:Win32/Virut.gen!AO may create the following registry entry or registry entries:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List "\??\" "\??\:*:enabled:@shell32.dll,-1"

Trending

Most Viewed

Loading...