Welcome to the Virus Encyclopedia of Panda Security.
|Type:||Potentially Unwanted Program (PUP)|
It is a legitimate tool for monitoring computers in a Microsoft operating system based net.
|First detected on:||July 29, 2004|
|Detection updated on:||March 7, 2007|
|Yes, using TruPrevent Technologies
PWDump.A is a Hacking Tool. Though these programs are legitimate and useful tools when they are appropriately used, a hacker could take advantage of them in order to carry out malicious actions.
PWDump.A only affects Windows XP/2000 computers, and it is used in order to dump users and password hash tables in local or remote Windows XP/2000 computers.
These hash tables allow brute force password cracking (try all the possible combinations) in order to try to guess the original values of the user names and passwords associated, and dictionary attacks (try all the most commonly used words).
PWDump.A accepts the following parameters:
Name or IP address of the computer from which the hash tables will be extracted.
Name of the output file with the results obtained.
Specification of wehter the extraction will be carried out in a local computer.
PWDump.A does not pose a risk by itself, but it can be used in order to get the valid user name and password in order to access a computer.
PWDump.A is difficult to recognize, as it does not show any messages or warnings that indicate it has reached the computer.