Fandom

Malware Wiki

W32.Haytap@mm

1,319pages on
this wiki
Add New Page
Comments0 Share

W32.Haytap@mm is a computer worm that was discovered April 30, 2006 and also goes by the name ''W32.Fakepatch@mm" occasionally. It operates using Yahoo! Messenger to infect.

Technical details Edit

  1. Copies itself as the following file:

C:\sectoriate.exe

  1. Adds the value:

to the following registry subkey:

so that it runs every time Windows starts:

  1. Obtains contact names from Yahoo! Messenger. The worm will append yahoo.com as the domain name to complete the email addresses.
  2. Sends itself to the email addresses it generates. The email has the following characteristics:

Subject:

Message:

Attachment: email.exe

Ad blocker interference detected!


Wikia is a free-to-use site that makes money from advertising. We have a modified experience for viewers using ad blockers

Wikia is not accessible if you’ve made further modifications. Remove the custom ad blocker rule(s) and the page will load as expected.