MAL_VUNDOG


 ALIASES:

Monder, Monderd, Virtum, Monderb

 PLATFORM:

Windows 2000, Windows Server 2003, Windows XP (32-bit, 64-bit), Windows Vista (32-bit, 64-bit), Windows 7 (32-bit, 64-bit)

 OVERALL RISK RATING:
 DAMAGE POTENTIAL:
 DISTRIBUTION POTENTIAL:
 REPORTED INFECTION:
 INFORMATION EXPOSURE:

  • Threat Type: Trojan

  • Destructiveness: No

  • Encrypted:

  • In the wild: Yes


  TECHNICAL DETAILS

File Size:

Varies

Heuristic Detection

This is the Trend Micro heuristic detection for suspicious files that manifest similar behavior and characteristics as the following malware:

If your Trend Micro product detects a file under this detection name, do not execute the file.

NOTES:

However, if you have reason to believe that the detected file is non-malicious, you can submit a sample for analysis. Detailed analysis will be done on submitted samples, and corresponding removal instructions will be provided, if necessary.

  SOLUTION

Minimum Scan Engine:

9.700

FIRST VSAPI PATTERN FILE:

6.226.03

FIRST VSAPI PATTERN DATE:

26 Jun 2009

VSAPI OPR PATTERN File:

6.227.00

VSAPI OPR PATTERN Date:

27 Jun 2009

NOTES:

Submitting Samples

If you identified suspicious files, you may submit them to us. Sample files for submission must be in ZIP format and should be password-protected. To submit a ZIP file, file compression software such as Winzip must be used. A trial version of Winzip is available at winzip.com.

To compress a file, please follow the steps below:

  1. Right-click on the file and select Add to ZIP.
  2. Enter a file name for the ZIP file.
  3. On the Options menu, choose Encrpyt. In the input box, type virus. This serves as the password for the ZIP file.
  4. Send the sample through the following channels:
    • For Trend Micro Premium customers, please submit a virus support case by clicking here:
      https://psc.trendmicro.com/eservice_enu/start.swe?SWECmd=Start&SWEHo=psc.trendmicro.com
    • For Trend Micro non-Premium customers, please contact your local support network by visiting your Trend Micro regional website.
    • For non-Trend Micro customers, scan your system with HouseCall, our highly popular and capable on-demand scanner for identifying and removing viruses, Trojans, worms, unwanted browser plug-ins, and other malware.


Did this description help? Tell us how we did.