TROJ_UNRUY.SMC
October 08, 2012
PLATFORM:
Windows 98, ME, NT, 2000, XP, Server 2003
OVERALL RISK RATING:
DAMAGE POTENTIAL:
DISTRIBUTION POTENTIAL:
REPORTED INFECTION:
Threat Type: Trojan
Destructiveness: No
Encrypted:
In the wild: Yes
OVERVIEW
This Trojan terminates itself if it detects it is being run in a virtual environment.
TECHNICAL DETAILS
File Size:
Varies
File Type:
PE
Memory Resident:
No
Initial Samples Received Date:
21 Jun 2010
Installation
This Trojan terminates itself if it finds the following processes in the affected system's memory:
- avp.exe
Other Details
Based on analysis of the codes, it has the following capabilities:
- It loads and executes its component in memory - detected as Mal_DLDER
It terminates itself if it detects it is being run in a virtual environment.