TROJ_TALERET.TY
October 19, 2012
ALIASES:
TrojanDownloader:Win32/Taleret.D (Microsoft)
PLATFORM:
Windows 2000, Windows XP, Windows Server 2003
OVERALL RISK RATING:
DAMAGE POTENTIAL:
DISTRIBUTION POTENTIAL:
REPORTED INFECTION:
![](/vinfo/imgFiles/legend.jpg)
Threat Type: Trojan
Destructiveness: No
Encrypted:
In the wild: Yes
OVERVIEW
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
TECHNICAL DETAILS
File Size: 110,080 bytes
File Type: DLL
Initial Samples Received Date: 03 Oct 2012
Arrival Details
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
Other Details
This Trojan connects to the following possibly malicious URL:
- http://{BLOCKED}.{BLOCKED}.1.130:443/qupco.asp?02591402499743
- http://{BLOCKED}.{BLOCKED}.108.54:443/hedef.asp?05971478488561
- http://{BLOCKED}a.{BLOCKED}list.com:443/crnaf.asp?03921554104612
- http://{BLOCKED}.{BLOCKED}list.com:80/djvrv.asp?03071607797967
It drops the following file(s)/component(s):
- %System%\rundll32.exe.xxt - contains logs
(Note: %System% is the Windows system folder, which is usually C:\Windows\System on Windows 98 and ME, C:\WINNT\System32 on Windows NT and 2000, or C:\Windows\System32 on Windows XP and Server 2003.)