Win32/Hetuph [Threat Name] go to Threat

Win32/Hetuph.A [Threat Variant Name]

Category virus
Aliases Trojan-Downloader.Win32.Agent.chji (Kaspersky)
  Generic.Downloader.x (McAfee)
  Backdoor.Graybird (Symantec)
Short description

The virus is probably a part of other malware. The infected files contain program code which tries to download other malware.

Other information

The virus contains an URL address. It tries to download a file from the address. The HTTP protocol is used.


The file is stored in the following location:

  • %temp%\­wmsetup.dll

The file is then executed.

Please enable Javascript to ensure correct displaying of this content and refresh this page.