Eng
  1. Skip to navigation
  2. Skip to content
  3. Skip to sidebar


Moloch


Aliases:


Moloch

Malware
Virus
W32

Summary

This is a boot sector virus, which contains the following encrypted texts:

OH-MY-GOD! Moloch (tm) is here!
        Moloch is a trademark of SquiBoyz

The virus modifies only few bytes in the boot sector. It uses variable encryption.

Moloch also modifies the CMOS settings to force a boot to happen always from the hard drive. Finally, Moloch uses direct I/O to control the hard drive, which makes it quite difficult virus to bypass if it's already resident in memory.



Disinfection & Removal

Automatic Disinfection

Allow F-Secure Anti-Virus to disinfect the relevant files.

For more general information on disinfection, please see Removal Instructions.







Description Created: Mikko Hypponen, F-Secure



Submit a sample




Wondering if a file or URL is malicious? Submit a sample to our Lab for analysis via the Sample Analysis System (SAS)

Give And Get Advice




Give advice. Get advice. Share the knowledge on our free discussion forum.