Emotet is a very nasty type of malware that has been around for years. This is a banking trojan that specializes in sneaking onto victims’ computers and stealing their financial information. Since it’s so sneaky, it might be hard to find it talking on your PC. Let’s explore how to check if your PC is infected with Emotet malware.
1. Using the EmoCheck Tool
Luckily, Japan CERT has made checking out Emotet easy. They’ve created a tool called EmoCheck, which performs a quick and simple scan of your PC.
To use EmoCheck, first go to the project’s GitHub release page. Find the most recent post on the page, then scroll down to find the download link. If you just want something you can download and run, grab an x32 or x64 file depending on your type of operating system – 32- and 64-bit, respectively.
After you download it, run it. You will see this screen:
After you press a button, the window will disappear. If so, check where you downloaded the EmoCheck executable. You will see a new log file.
Double click it to see a report whether Emotet is on your PC. Hopefully, it’s a clear report!
2. Look for strange services
Emotet works by creating a service with a random name. This, in turn, then tries to create another service with another random name. Therefore, if you see some weird service names popping up, it’s a good idea to do a deep clean of your OS.
For Windows, you can check your services by pressing Ctrl + Shift + ESC for task manager, then clicking the “Services” tab.
Look for any service that is just a series of random numbers. For example, the following image shows some examples of the Emotet service found by Sophos.
If you encounter this entry, make sure to disconnect your PC from your network and perform a thorough scan with an antivirus program.
3. Monitor Your Financial Accounts
While waiting for a banking trojan to steal money from you is not a good antivirus precaution, it can be a way to detect if something is going on on your computer. Thus, if you tend to ignore your bank accounts and throw away all your statements before reading them, it is a good idea to keep an eye on them more often.
Every week or so, be sure to check all of your bank statements. If you see a purchase you didn’t make yourself, be sure to call your bank immediately and ask them to cancel your card. Then, disconnect your PC from the network, scrub with the antivirus, and change your online banking login information.
4. Download and Scan With a Decent Antivirus
Speaking of antivirus, it’s always a good idea to install a good security program and allow it to install its updates. Malware like Emotet has a tendency to “evolve” and change its code, so it’s best to make sure your antivirus is updated with all the latest virus definitions.
If you are unsure whether your antivirus is able to track Emotet, be sure to read our selection of free and useful antivirus programs.
Stay Safe From Emotet
Even though Emotet is a pretty nasty type of malware, there are ways to protect yourself from it. Now you know four ways to catch Emotet in action and protect yourself before it does more damage. You may also want to start using Windows Defender to protect yourself, especially against ransomware.