Threat Database Malware Win32/Gamarue

Win32/Gamarue

By LoneStar in Malware

Win32/Gamarue is a malware infection that may propagate via exploit kits such as Blacole, other malware infections, for example, Win32/Dofoil and Win32/Beebone and spammed emails (the subject 'Your ex sent me this pciture [sic] of you.' and an attachment named 'Photo.zip'). Win32/Gamarue can steal sensitive information from the affected users. When Win32/Gamarue is executed, it creates a new instance of one of the certain files, and adds its payload into the new process. If Win32/Gamarue runs with administrator privileges, it may copy itself to the particular folders by creating the specific files. Win32/Gamarue may create some registry entries so that it can start whenever you boot up Windows.

Related Posts

TrojanDropper:Win32/Gamarue.A

August 14, 2013

TrojanDropper:Win32/Gamarue.A is a Trojan that creates copies of itself into a targeted PC by adding a particular file. TrojanDropper:Win32/Gamarue.A creates the registry entries as part of its...

Worm:Win32/Gamarue.I

March 6, 2013 1

Worm:Win32/Gamarue.I is one of the most recent variants in the Gamarue family of malware. Gamarue worm variants pose a severe threat to any computer. The Worm:Win32/Gamarue.I variant in particular...

Worm:Win32/Gamarue.B

October 12, 2011

Worm_Win32/Gamarue.B is a malicious computer program designed to carry out or inflict a set of destructive commands against PCs improperly protected or having weaker Internet security in place....

Trending

Rzfu Ransomware

September 4, 2023

The Rzfu Ransomware is a perilous strain of malware specifically engineered to encrypt files stored on a targeted computer system. When the Rzfu Ransomware is triggered, it conducts a comprehensive...

'YouPorn' Email Scam

Spam

September 5, 2023

Following a thorough examination of the 'YouPorn' emails, cybersecurity experts have confirmed their fraudulent nature. These emails are part of various spam variants, all resembling sextortion tactics. The common thread among these deceptive emails is a fabricated assertion that the recipient has been implicated in sexually explicit material recently posted on the YouPorn website. The emails...

Rzkd Ransomware

September 5, 2023

The Rzkd Ransomware is a threatening software variant that infiltrates computer systems and holds the user's data hostage until a ransom is paid to the attackers. This ransomware operates by...

Most Viewed

Is Lookmovie.io Safe? screenshot

Is Lookmovie.io Safe?

August 3, 2021 28,701 5

Lookmovie.io is a video streaming site. The problem is that the content there is being offered for streaming illegally. In addition, the site generates monetary gains via rogue advertising...

How To Fix 'Printer Driver is Unavailable' Error

June 29, 2021 22,373

Printers are notorious for refusing to do their job whenever the user needs it the most. Luckily, if your printer is displaying the Printer Driver is Unavailable' error, then there are a couple of...

Discord Shows Black Screen when Sharing Screen screenshot

Discord Shows Black Screen when Sharing Screen

June 21, 2021 21,642

When it first launched, Discord was a VoIP platform geared toward the gaming community. However, in the following years, it expanded its scope, added numerous new features, and became one of the...

Loading...