Win32/Akannuna [Threat Name] go to Threat

Win32/Akannuna.A [Threat Variant Name]

Category virus
Aliases W32.Akannuna (Symantec)
  W32/Nibiru-A (Sophos)
Short description

Win32/Akannuna.A is a polymorphic file infector.

Executable file infection

The virus infects files in the current folder.


The virus searches for executables with one of the following extensions:

  • .exe

Executables are infected by appending the code of the virus to the last section.


The virus uses the EPO (Entry Point Obscuring) infection technique.


The infiltration program code is invoked when the infected executable calls one of the following API functions:

  • ExitProcess (Kernel32.dll)
Other information

The virus may display the following message:

The virus connects to the following addresses:

  • google.com

Please enable Javascript to ensure correct displaying of this content and refresh this page.