TROJ_MEDFOS.DAP
Mal/Medfos-M (Sophos), a variant of Win32/Medfos.XO trojan (NOD32)
Windows 2000, Windows Server 2003, Windows XP (32-bit, 64-bit), Windows Vista (32-bit, 64-bit), Windows 7 (32-bit, 64-bit)
![](/vinfo/imgFiles/legend.jpg)
Threat Type: Trojan
Destructiveness: No
Encrypted:
In the wild: Yes
OVERVIEW
This Trojan may arrive bundled with malware packages as a malware component.
It requires its main component to successfully perform its intended routine.
TECHNICAL DETAILS
368,640 bytes
DLL
27 Sep 2013
Arrival Details
This Trojan may arrive bundled with malware packages as a malware component.
Autostart Technique
This Trojan adds the following registry entries to enable its automatic execution at every system startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\
Windows\CurrentVersion\Run
{Malware File Name} = "rundll32.exe {Malware Path and Filename}.dll"
Other Details
This Trojan requires its main component to successfully perform its intended routine.