What is Gauss Malware Threat & How to Test Your PC for Possible Infections?

Security researcher were always strives to find various PC threats and its infections level so that they can improve their security level and Antivirus trustworthiness.

This time, Guass malware grabbed the attention of most researcher as it much increases the PC vulnerability as well as the risks to loose confidential data from someone PC’s such as bank account details, system information, owner details etc.

This latest piece of threats becomes popular in August mid popularly originated with the name ‘cyber-espionage’.

It’s main purpose is to steal maximum information from the PC’s (specially on Windows 7 32 & 64 bit, Windows 7 SP1, MAC & Linux appears to be safe) including system properties, social networks information, email & IM accounts etc. and target to hijack banking information including PayPal, Citibank according to Kaspersky Lab Expert.

Guass uses the same code base, modular structure resembling and various other similarities to flame, detected in May, 2012. Gauss infected more than thousands of PC in middle east, since it primarily spread out in Lebanon and Iran in the last 10 months.

When gauss attacks to any PC, it tries to steal browser history, cookies, saved passwords or any other crucial information which helps them to easily get into your online bank accounts and steal money from it.

It sends out the collected data from user’s machine to its control and command server (C & C Server). Below are the same major vulnerabilities of this threat:

  1. Collect computer network connection information
  2. Hard drive folders, subfolders along with it’s properties and other crucial details
  3. PC’s hardware information such as CMOS, BIOS, RAM etc.
  4. Installing the custom Palida Narrow font (Introduction of this font is still unknown).
  5. Injecting the infected module into USB drivers to steal more information from other computers, removable media or external hard drive and infect them as well.

Below is the detailed architecture about how Gauss damages the system and steals information:

image from securelist

Image Credit: Securelist

How to Check Gauss Infections?

The most common way to test weather your PC is infected by Gauss or not is by finding a font called ‘Palida Narrow’. However, the main purpose of this font is still unknown, says by Kaspersky lab expert.

palida narrow fonts

Kaspersky advised to download & install Kaspersky Virus removal tool to nail the minor infections caused by Gauss or visit here to test infections online.


About The Author: Abhayjeet is a professional blogger and tech adviser at Stellar Phoenix Data Recovery Solution. He can be followed on twitter @powellstellar

Build Your Own Security
Subscribe to my newsletter and get a copy of my eBook for free.
We hate spam just as much as you

Related posts:

  1. Is It a Malware?
  2. Recent AV Test Shows That Kaspersky is Worth Paying
  3. Google Search Engine Warns User on Malware Infections


  1. Bhushan

    What a excellent and detailed info about gauss malware (virus). I am glad to see it that here is very great solution also.I have test for the online solution and I am safe from this virus.
    very helpful info.thanks for letting us know because it is necessary to be ready with updates and their soltions.
    Bhushan recently posted..Inventory Management Software NoidaMy Profile

  2. Aditya says:

    Gauss seems to be a huge threat for every single operation done on the systems.It steals all the information from a computer and also from other……wow i guess the person who developed this software has done something incredible but in wrong direction.
    Aditya recently posted..ERP Software IndiaMy Profile

  3. Richa from Bankruptcy Lawyer Sloatsburg says:

    Thanks for sharing this valuable info. It is important for all of us to be informed and aware of such things to save our systems.

  4. Jade Lewis from Printer Ink

    I think all internet user already know about malware. Nowadays lots of websites contain malware so anytime we can get affected. So I think we should use any good internet security. I am using Kaspersky which is working well for me.

  5. Run and hide your iPhone as a dangerous PDF exploit will let malware infect your phone. Cyber criminals will use this hole to steal your sensitive information says Germany’s Federal Office for Information Security. Thanks for the solution.
    Michael Davis recently posted..RedXMy Profile

Speak Your Mind


CommentLuv badge

This blog uses premium CommentLuv which allows you to put your keywords with your name if you have had 3 approved comments. Use your real name and then @ your keywords (maximum of 3)