Technical Research Report

Learn about what Houdini impacts, how it behaves, and sample code.

Houdini Malware Discovered

The report details nearly 794 callbacks from an infected machine in the construction and engineering vertical were identified. The discovery was the product of a Menlo Security Isolation Platform feature—the ability to monitor and apply policy to both browser and non-browser traffic.

The malware belonged to the H-Worm/Houdini malware family and is a well-known Remote Access Trojan (RAT). Houdini has been used in both limited attacks as well as other malware campaigns. In the past, it has been known to target the energy industry. It is a self-propagating worm that copies itself to any removable drives connected to the infected system.

Learn more in this technical research report.