Hello,
On June 29th I started receiving alerts of various .DLL files that are signed by Awareness Technologies INC. MD5's are recorded below for a couple of them - they all lie inside the same directory as well.
Was wondering if any WR members have these as well, or any background into on what "w32.WebWatcher" is.
MD5's=
8B687262834FC6FDC47F7B495CBF57F6
194230014D2CC1C6B92422E32786EB0A
D2BF39B5C0E65B2E18EB4921FCA4BCD2
7625459200D05EF7197E62EFE2F5F28C
Answer
Question about .DLL files from a specific vendor tagged as malicious
Best answer by DanP
Hello @SirJinno
Webwatcher is "Parental/Employee Monitoring Software." Typically it is installed by the owner of the device (parent or employer) but because it has full monitoring capabilities (keystrokes and screen captures to name a few) it has also been used maliciously.
-Dan
Webwatcher is "Parental/Employee Monitoring Software." Typically it is installed by the owner of the device (parent or employer) but because it has full monitoring capabilities (keystrokes and screen captures to name a few) it has also been used maliciously.
-Dan
+35- OpenText Employee
- Answer
Hello @SirJinno
Webwatcher is "Parental/Employee Monitoring Software." Typically it is installed by the owner of the device (parent or employer) but because it has full monitoring capabilities (keystrokes and screen captures to name a few) it has also been used maliciously.
-Dan
Webwatcher is "Parental/Employee Monitoring Software." Typically it is installed by the owner of the device (parent or employer) but because it has full monitoring capabilities (keystrokes and screen captures to name a few) it has also been used maliciously.
-Dan
Webroot Threat Research
makes sense as Awareness Technologies INC shows as a MaaS (monitoring as a service, probably not a real acronym) company. Thank you!
Login to the community
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.