Name of Malware: Mutabaha

Type of Malware: trojan

Affected Operating Systems: Windows

Affected Device Types: PCs, laptops

Impact: medium

What is Mutabaha?

Mutabaha is a Trojan for Windows devices.

"Outfire", a Chromium-based browser, is downloaded and installed. This pretends to be the version of the Google Chrome browser. Mutabaha is able to drain data and manipulate advertisements.

How did I get infected with Mutabaha?

Mutabaha is downloaded and installed by another malware. As a rule, this dropper is removed after the malware has been installed, making it almost impossible to trace the infection.

What do I have to do now?

In order to disinfect the system and, if necessary, detect further infections, we recommend scanning the infected system with an antivirus program and removing any finds. Due to the techniques used, it is necessary to start the infected Windows system in Safe Mode to remove the malicious program.

Further information on removing this malware can be found under Removing infections from PCs, laptops etc.

Technical specifications

Further information on this malware can be found on the website of our project partner Fraunhofer FKIE.