PLATFORM:

Windows

 OVERALL RISK RATING:
 DAMAGE POTENTIAL:
 DISTRIBUTION POTENTIAL:
 REPORTED INFECTION:
 INFORMATION EXPOSURE:

  • Threat Type: Trojan

  • Destructiveness: No

  • Encrypted:

  • In the wild: Yes

  OVERVIEW

This HyperText Markup Language (HTML) files usually appears as links in search engines when users look for Web articles related to hot topics.

It displays a scanner page.

It then leads to the download of a FakeAV executable file.

  TECHNICAL DETAILS

NOTES:

This HyperText Markup Language (HTML) file may be downloaded unknowingly by a user when visiting malicious Web site(s). It usually appears as links in search engines when users look for Web articles related to hot topics.

Upon accessing the links, a scanner page is displayed, which may appear as any of the following:

It then leads to the download of a FakeAV executable file.

When the user executes the downloaded file or clicks the Run button, routines of the malicious file are also exhibited on the affected system.