Solved

Question about .DLL files from a specific vendor tagged as malicious

  • 2 July 2019
  • 2 replies
  • 20707 views

Badge +3
Hello,

On June 29th I started receiving alerts of various .DLL files that are signed by Awareness Technologies INC. MD5's are recorded below for a couple of them - they all lie inside the same directory as well.

Was wondering if any WR members have these as well, or any background into on what "w32.WebWatcher" is.

MD5's=
8B687262834FC6FDC47F7B495CBF57F6
194230014D2CC1C6B92422E32786EB0A
D2BF39B5C0E65B2E18EB4921FCA4BCD2
7625459200D05EF7197E62EFE2F5F28C
icon

Best answer by DanP 2 July 2019, 21:24

Hello @SirJinno

Webwatcher is "Parental/Employee Monitoring Software." Typically it is installed by the owner of the device (parent or employer) but because it has full monitoring capabilities (keystrokes and screen captures to name a few) it has also been used maliciously.


-Dan
View original

2 replies

Userlevel 7
Badge +32
Hello @SirJinno

Webwatcher is "Parental/Employee Monitoring Software." Typically it is installed by the owner of the device (parent or employer) but because it has full monitoring capabilities (keystrokes and screen captures to name a few) it has also been used maliciously.


-Dan
Badge +3
makes sense as Awareness Technologies INC shows as a MaaS (monitoring as a service, probably not a real acronym) company. Thank you!

Reply