Moloch

Aliases:

Moloch

Category:
Type:
Platform:

Malware
Virus
W32

Summary

This is a boot sector virus, which contains the following encrypted texts:

OH-MY-GOD! Moloch (tm) is here!
        Moloch is a trademark of SquiBoyz

The virus modifies only few bytes in the boot sector. It uses variable encryption.

Moloch also modifies the CMOS settings to force a boot to happen always from the hard drive. Finally, Moloch uses direct I/O to control the hard drive, which makes it quite difficult virus to bypass if it's already resident in memory.

Disinfection & Removal

Allow F-Secure Anti-Virus to disinfect the relevant files.

For more general information on disinfection, please see Removal Instructions.

Description Created: Mikko Hypponen, F-Secure

Submit a sample

Wondering if a file or URL is malicious? Submit a sample to our Lab for analysis via the Sample Analysis System (SAS)

Submit

F-Secure Community

Give advice. Get advice. Share the knowledge on our free discussion forum.

Go to Community

Moloch

Summary

Disinfection & Removal

Submit a sample

F-Secure Community

Protecting the irreplaceable

Protection

Analysis

Downloads

Support

News & feeds

Connect

About F-Secure

Information

Visit also

F-Secure for consumers

F-Secure for operators

F-Secure for business

F-Secure Corporation