PHP_LOLLUSC.AA
October 14, 2013
ALIASES:
PHP/Rst.CO!tr.bdr (Fortinet); Backdoor:PHP/Lollusc.A (Microsoft)
PLATFORM:
Windows 2000, Windows Server 2003, Windows XP (32-bit, 64-bit), Windows Vista (32-bit, 64-bit), Windows 7 (32-bit, 64-bit)
OVERALL RISK RATING:
DAMAGE POTENTIAL:
DISTRIBUTION POTENTIAL:
REPORTED INFECTION:
INFORMATION EXPOSURE:
![](/vinfo/imgFiles/legend.jpg)
Threat Type: Trojan
Destructiveness: No
Encrypted:
In the wild: Yes
OVERVIEW
This Trojan may be hosted on a website and run when a user accesses the said website.
TECHNICAL DETAILS
File Size: 2,245 bytes
File Type: GIF
Initial Samples Received Date: 01 Feb 2013
Arrival Details
This Trojan may be hosted on a website and run when a user accesses the said website.
Download Routine
This Trojan downloads a possibly malicious file from a certain URL. The URL where this malware downloads the said file depends on the parameter passed on to it by its components.