Search
Keyword: troj_cryptesla
This Trojan arrives as a component bundled with malware/grayware packages. Arrival Details This Trojan arrives as a component bundled with malware/grayware packages. Installation This Trojan drops
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. Arrival Details This Trojan arrives as an attachment to email messages spammed by other
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It does not have any propagation routine. It does not
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It arrives on a system as a file dropped by other malware or as a file downloaded
following substrings: samp smpl vir malw test troj (Note: %User Temp% is the user's temporary folder, where it usually is C:\Documents and Settings\{user name}\Local Settings\Temp on Windows 2000, Windows
itself if the malware name and/or path has the following substrings: samp smpl vir malw test troj (Note: %User Temp% is the user's temporary folder, where it usually is C:\Documents and Settings\{user name
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It does not have any propagation routine. It does not
following substrings: samp smpl vir malw test troj Can do any of the following depending on the installation date of "%System%\win32k.sys": Create svchost process with this argument "-1 EVT{Volume ID}" Inject
if the malware name and/or path has the following substrings: samp smpl vir malw test troj Can do any of the following depending on the installation date of "%System%\win32k.sys": Create svchost
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It arrives on a system as a file dropped by other malware or as a file downloaded
substrings: smpl vir malw test troj It terminates itself if any of the following user name(s) are found in the affected system: luser perl python trace dump It searches for itself in the following autostart
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It does not have any propagation routine. It does not
This Trojan arrives as attachment to mass-mailed email messages. It deletes itself after execution. Arrival Details This Trojan arrives as attachment to mass-mailed email messages. Dropping Routine
This Trojan drops a component that overwrites disk partitions. It renders the computer unusable after reboot. It is also used by TROJ_DISTTRACK.C when reporting to its C&C server. This Trojan may be
This Trojan overwrites disk partitions, rendering the affected computer unusable and unrecoverable. To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Threat Diagram
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
It is a script that may be used to compromise a server running a vulnerable PHP application. This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by
This Trojan executes then deletes itself afterward. Installation This Trojan drops the following file(s)/component(s): %System%\68c0bb68f02a.dll - also detected as TROJ_FAKEAV.DJK (Note: %System% is
http://SJC1-TE-CMSAP1.sdi.trendnet.org/dumpImages/0310201311155.gif Security researchers have noted a sudden increase in Tor traffic during the latter part of August 2013. According to reports , the