Check if your computer is affected by Asus’ ‘Shadow Hammer’ attack
If you have an Asus computer, you should check if your device is among those affected by the recent “Shadow Hammer” malware attack.
You ‘ve probably seen worrying headlines about this malware , but for those who have not heard, this is what happened. A recent malware attack has affected more than 57,000 Asus computers and laptops, taking advantage of Asus’ system to implement software updates in its products. That figure has come from an analysis recently published by online security company Kaspersky, which has been investigating the attack. The report analyzes exactly how the attack was carried out and why it is so disturbing.
The Kaspersky report also includes a tool that the company developed so that the owners of an Asus can verify if their device was among those affected by the malware attack. It only takes a few seconds to check if your device has been affected by this problem or not.
- Download “shadowhammercheck.zip” by clicking here
- Extract the file.
- Open the “shadowhammercheck” folder and run shadowhammer.exe
- The program will do a quick test to your computer and will give you the result almost immediately.
Asus has also launched a diagnostic tool so users can check their computers and look for possible malware threats. Its operation is similar to that of the Kaspersky tool.
- Download “ASDT_v1.0.10.zip” from Asus
- Unzip the file
- Open the file and run “ASDT.exe”
- A dialogue box with the diagnosis will open
You can also use the online tool Shadowhammer from Kaspersky to know if your computer was in the specific list of targets, but you will need to know the MAC address of your computer.
- Open the command line of your terminal. Press Windows + R , type “cmd”, and press the Enter key .
- Once on the command line, type “ipconfig / all” and press Enter
- Several lines of information will appear. Look for any line that says “Physical address:” then note the strings of hexadecimal numbers that appear after the lines of Physical address; These strings of numbers are your MAC addresses. You can see an example of this in this last capture.
- Copy all MAC addresses
- Then, open the Kaspersky diagnostic page and copy each of your MAC addresses in the search box, and click “Check Now.” Repeat the operation with each of your MAC addresses.
If any of your MAC addresses is positive, you should take steps to find and remove the malware. So in that case, the first thing you should do is get yourself a reliable antivirus.
In fact, even if an application or a web does not indicate that you were on the “list of objectives”, it will not hurt to run an antivirus scan (just in case). Although there are a lot of excellent premium options , there are also many decent free antivirus and antimalware programs , including Windows Defender, which can help you eliminate any traces of Shadow Hammer.