Eng
  1. Skip to navigation
  2. Skip to content
  3. Skip to sidebar


Other:W32/Packed


Aliases:


Other:W32/Packed

Malware
Other
W32

Summary

A malicious program which does not easily fit into any other malware category.



Disinfection & Removal

Allow F-Secure Anti-Virus to disinfect the relevant files.

For more general information on disinfection, please see Removal Instructions.


Manual Disinfection

In some cases, F-Secure Anti-Virus may not be able to remove the suspect files (identified with the prefix Packed.Win32) automatically. The user may then be required to select proper disinfection action.

Product documentation for various versions of F-Secure products are available on the Documentation section of the website.



Technical Details

Other:W32/Packed is our Generic Detection name for files that have been packed using file compressor programs purchased using stolen credit cards and/or hijacked "web wallet" accounts.

Malware authors use file compressor programs to compress their malware and thwart security programs attempting to scan, debug, emulate or unpack the compressed file as part of their normal security procedures.

Exact detection of the compressed file itself is problematic due to its polymorphic nature; therefore generic detection of the (usually static) "key" algorithm used to unpack the compressed file is used instead.


Note

If you find a legitimate file that is detected by F-Secure Anti-Virus as one of the following, please send it to us for review:

  • Packed.Win32.PolyCrypt
  • Packed.Win32.Tibs
  • Packed.Win32.Klone
  • Packed.Win32.CryptExe
  • Packed.Win32.Exeref
  • Packed.Win32.Katusha
  • Packed.Win32.Krap






Submit a sample




Wondering if a file or URL is malicious? Submit a sample to our Lab for analysis via the Sample Analysis System (SAS)

Give And Get Advice




Give advice. Get advice. Share the knowledge on our free discussion forum.