Search
Keyword: troj_crypctb
It drops and executes a file detected as BKDR_TDSS.JAS. This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites. It executes the
This Trojan connects to certain URLs. It may do this to remotely inform a malicious user of its installation. It may also do this to download possibly malicious files onto the computer, which puts
This Trojan arrives as a file that exports the functions of other malware/grayware. It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when
Dropping Routine This Trojan drops the following files: %Program Files%\{installation folder}\KDTAnywhereS.exe - detected as BKDR_VIYENSI.KDT (Note: %Program Files% is the default Program Files
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It takes advantage of software vulnerabilities in certain software to drop malicious
This Trojan may be dropped by other malware. It executes downloaded files whose malicious routines are exhibited by the affected system. Arrival Details This Trojan may be dropped by the following
This Trojan may be dropped by other malware. It connects to certain URLs. It may do this to remotely inform a malicious user of its installation. It may also do this to download possibly malicious
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It resolves a Domain Naming System (DNS) host name or Internet Protocol (IP) address.
This Trojan deletes itself after execution. Installation This Trojan drops the following copies of itself into the affected system: %Application Data%\{random folder name}\csrss.exe (Note:
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It arrives as a component bundled with malware/grayware
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It may be downloaded by other malware/grayware/spyware from remote sites. It may be
This is the Trend Micro detection for files that exhibit certain behaviors. Other Details This is the Trend Micro detection for: AUTORUN.INF component files dropped by WORM_AUTORUN variants. These
This Trojan modifies files, disabling programs and applications from properly running. It deletes registry entries, causing some applications and programs to not function properly. It deletes itself
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It attempts to steal sensitive online banking
Autostart Technique This Trojan adds the following registry entries to enable its automatic execution at every system startup: HKEY_CLASSES_ROOT\CLSID\{B69F34DD-F0F9-42DC-9EDD-957187DA688D}
It is an AUTORUN.INF file that is used as an autostart component of the malware WORM_OTORUN.ASH. This component is usually dropped into shared folders, along with the main malware's copy. Upon
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It may be unknowingly downloaded by a user while visiting malicious websites. Arrival
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It executes the dropped file(s). As a result, malicious
This Trojan is a specially crafted PDF file which when viewed or executed, may allow a malicious user to take control over an affected system. Other Details This specially crafted PDF file contains
This Trojan arrives as a component bundled with malware/grayware packages. It may be injected into processes running in memory. It requires its main component to successfully perform its intended