TrojanDropper:Win32/Cutwail.E is the generic detection for a Trojan family that drops a system driver to conceal itself, and downloads additional malicious programs onto the infected computer. Downloaded files may be executed from disk or injected directly into another process. The functionality of the files that are downloaded may change, but Win32/Cutwail usually downloads a Trojan which is able to send spam. Win32/Cutwail also uses rootkit and other defensive techniques to avoid detection and removal.

Win32/Cutwail is a multi-component family of trojans that download and execute arbitrary files. Downloaded files may be executed from disk or injected directly into other processes. Whilst the functionality of the files that are downloaded is variable, Cutwail's purpose is often to send spam. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.

 

This component is used to send spam.

TrojanDownloader:Win32/Cutwail.Y is a trojan that connects to a remote IP address to download other malware. It also prevents the firewall service from running in the infected system.

TrojanDownloader:Win32/Cutwail.AD is a trojan that is capable of downloading other malware from a remote website.

Cutwail is a trojan which is able to download and executes arbitrary files. Downloaded files may be executed from disk or injected directly into another process. Whilst the functionality of the files that are downloaded may change, Cutwail usually downloads a trojan which is able to send spam. Cutwail also employs rootkit and other defensive techniques to avoid detection and removal.

 

VirTool:WinNT/Cutwail.L is a device driver component (rootkit) used by Cutwail malware family. It contains functionality drop files and to run in Windows safe mode and Windows safe mode with network support.

TrojanDropper:Win32/Cutwail.AL is a member of Win32/Cutwail - a multi-component family of malware that downloads and executes arbitrary files. Downloaded files may be executed from disk or injected directly into other processes. Whilst the functionality of the files that are downloaded is variable, Cutwail usually downloads another trojan which is used to send spam. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.

 

This particular variant injects another Cutwail component into a process on the affected system, and may download and execute arbitrary files.

TrojanDownloader:Win32/Cutwail.BC is a member of Win32/Cutwail - a multi-component family of malware that downloads and executes arbitrary files. This functionality is mostly used to install additional Cutwail components, and other malware on an affected computer. In general, the Cutwail family is used to compromise computers and direct them in various ways at the attacker's will, usually for monetary gain. This could include using the affected computer to distribute additional malware, send spam, generate 'pay per click' advertising revenue, harvest email addresses, and break captchas. Its components are varied, but include trojan downloaders and droppers, spammers, and viruses. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.

TrojanDropper:Win32/Cutwail.AV is a trojan that modifies a Windows system file. detected as Virus:Win32/Cutwail.I.

TrojanDownloader:Win32/Cutwail.BG is a member of Win32/Cutwail - a multi-component family of malware that downloads and executes arbitrary files. This functionality is mostly used to install additional Cutwail components, and other malware on an affected computer. In general, the Cutwail family is used to compromise computers and direct them in various ways at the attacker's will, usually for monetary gain. This could include using the affected computer to distribute additional malware, send spam, generate 'pay per click' advertising revenue, harvest email addresses, and break captchas. Its components are varied, but include trojan downloaders and droppers, spammers, and viruses. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.

TrojanDownloader:Win32/Cutwail.BM is a member of Win32/Cutwail - a multi-component family of malware that downloads and executes arbitrary files. This functionality is mostly used to install additional Cutwail components, and other malware on an affected computer. In general, the Cutwail family is used to compromise computers and direct them in various ways at the attacker's will, usually for monetary gain. This could include using the affected computer to distribute additional malware, send spam, generate 'pay per click' advertising revenue, harvest email addresses, and break captchas. Its components are varied, but include trojan downloaders and droppers, spammers, and viruses. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.

TrojanDownloader:Win32/Cutwail.BQ is a member of Win32/Cutwail - a multi-component family of malware that downloads and executes arbitrary files. This functionality is mostly used to install additional Cutwail components, and other malware on an affected computer. In general, the Cutwail family is used to compromise computers and direct them in various ways at the attacker's will, usually for monetary gain. This could include using the affected computer to distribute additional malware, send spam, generate 'pay per click' advertising revenue, harvest email addresses, and break captchas. Its components are varied, but include trojan downloaders and droppers, spammers, and viruses. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.

TrojanDownloader:Win32/Cutwail.BW is a member of Win32/Cutwail - a multi-component family of malware that downloads and executes arbitrary files. This functionality is mostly used to install additional Cutwail components, and other malware on an affected computer. In general, the Cutwail family is used to compromise computers and direct them in various ways at the attacker's will, usually for monetary gain. This could include using the affected computer to distribute additional malware, send spam, generate 'pay per click' advertising revenue, harvest email addresses, and break captchas. Its components are varied, but include trojan downloaders and droppers, spammers, and viruses. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.

TrojanDownloader:Win32/Cutwail.BX is a member of Win32/Cutwail - a multi-component family of malware that downloads and executes arbitrary files. This functionality is mostly used to install additional Cutwail components, and other malware on an affected computer. In general, the Cutwail family is used to compromise computers and direct them in various ways at the attacker's will, usually for monetary gain. This could include using the affected computer to distribute additional malware, send spam, generate 'pay per click' advertising revenue, harvest email addresses, and break captchas. Its components are varied, but include trojan downloaders and droppers, spammers, and viruses. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.

TrojanDropper:Win32/Cutwail.AG is a trojan that drops TrojanDownloader:Win32/Cutwail.S, a trojan that downloads and executes predefined malicious files.

TrojanDropper:Win32/Cutwail.gen!H is a generic detection for a Trojan family that drops a system driver to conceal itself, and downloads additional malicious programs onto the infected computer. The functionality of the files that are downloaded may change, but Win32/Cutwail usually downloads a Trojan, which is able to send spam. Win32/Cutwail also uses rootkit and other defensive techniques to avoid detection and removal.

 

It attempts to drop a device driver, detected as VirTool:WinNT/Cutwail.K, into the system folder.

TrojanDownloader:Win32/Cutwail.gen!C is a Trojan that downloads and executes arbitrary files and uses advanced stealth techniques in order to hide its presence on the affected system.

TrojanDownloader:Win32/Cutwail.BV is a member of Win32/Cutwail - a multi-component family of malware that downloads and executes arbitrary files. This functionality is mostly used to install additional Cutwail components, and other malware on an affected computer. In general, the Cutwail family is used to compromise computers and direct them in various ways at the attacker's will, usually for monetary gain. This could include using the affected computer to distribute additional malware, send spam, generate 'pay per click' advertising revenue, harvest email addresses, and break captchas. Its components are varied, but include trojan downloaders and droppers, spammers, and viruses. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.

Virus:Win32/Cutwail.A is a virus that patches the file WINLOGON.EXE - a system file for Windows that manages Windows logon. This modification is used to load the file wsys.dll.

Virus:Win32/Cutwail.B is a virus that patches the file WINLOGON.EXE - a system file for Windows that manages Windows logon. This modification is used to load the file wsys.dll.