Beware of Fake “Microsoft Security Essentials” Malware Installer

Here is a very important information for all Windows users! Microsoft has warned about a new malware called “Hicurdismos” which pretends to be a Microsoft Security Essentials (MSE) installer, a well known anti-malware program from Microsoft for Windows 7 and earlier operating systems.

This new malware downloads a malicious “setup.exe” file on your computer which looks like an installer to install Microsoft Security Essentials program on your computer but in fact it installs a malware with the name “microsoft security essentials.exe” in “%SystemRoot%\bluesquarez llc\sysprotector” directory.

Microsoft_Security_Essentials_Malware_Installer.png

Advertisement

The malware executable disables your mouse cursor so that you start thinking that your computer is not responding. Apart from hiding the mouse cursor, this malware also disables Task Manager so that you can’t restart Explorer or end task running processes.

After hiding mouse cursor and disabling Task Manager, this malware displays a fake BSoD (Blue Screen of Death) on whole screen showing that your PC ran into a problem and needs to restart. This fake BSOD looks very close to real Windows 10 BSoD and shows a support phone number which can be used to get technical support to fix the issue which actually doesn’t even exist.

Microsoft_Security_Essentials_Malware_BSOD.png

This malware also adds an entry of its executable file to Windows startup so even if you restart your computer, the fake BSOD shows again and you are unable to use your computer.

Overall this malware is a scam to gather some money from the victim. You call the number and they ask to install another support tool to collect money from you.

Windows 8, Windows 8.1 and Windows 10 users should not believe on such advertisements or downloads as their operating systems already come with Windows Defender program preinstalled which is equivalent to Microsoft Security Essentials program.

You should only install Microsoft Security Essentials from Microsoft’s official website which can be found in following link:

Advertisement

Download Microsoft Security Essentials (MSE) Latest Version

If you are already using a good antivirus or anti-spyware program, it’ll detect this malware as “SupportScam:MSIL/Hicurdismos.A” and will immediately block or delete the exe file.

So don’t trust on such downloads and install a good antivirus and anti-spyware if you don’t have any yet. You can also take help of our official virus help & support topic to remove virus and other suspicious items from your computers.

Also Check:

Published in: Mobiles and Internet, Software, Windows 10, Windows 7, Windows 8, Windows Vista, Windows XP

About the author: Vishal Gupta (also known as VG) has been awarded with Microsoft MVP (Most Valuable Professional) award. He holds Masters degree in Computer Applications (MCA). He has written several tech articles for popular newspapers and magazines and has also appeared in tech shows on various TV channels.

Comments

NOTE: Older comments have been removed to reduce database overhead.

  1. Bahh… who uses MSE? lol just kidding…

    But in other words, this is a ransomware. It basically locks down your PC and data until you pay them money. The only way to cure this once you are hit is do a hard reset.

    Avast, BitDefender, and MalwareBytes all the way!

  2. From the image included in the article it’s obvious that just checking the program’s description is enough to get suspicious about installer. Of course regular users may not bother checking or even if they’d they may not understand what’s exceptional about the installer.

Leave a Comment

Your email address will not be published. Required fields are marked *

NOTE: Your comment may not appear immediately. It'll become visible once we approve it.