Search
Keyword: TROJ_DLOADER
Installation This Trojan drops the following files: %User Temp%\Temp\notpad.exe - also detected as TROJ_HIDFILE.INF %User Temp%\Temp\RGZ DECODER.EXE - non-malicious file (Note: %User Temp% is the
Installation This Trojan drops the following files: %User Profile%\Application Data\Adobe\AdobeUpdate .exe - non malicious %current folder%\err.log{random numbers} - detected by Trend Micro as
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It may be dropped by other malware. It executes the files it drops, prompting the affected
This Trojan arrives as attachment to mass-mailed email messages. It connects to certain URLs. It may do this to remotely inform a malicious user of its installation. It may also do this to download
This Trojan may arrive bundled with malware packages as a malware component. It may be downloaded by other malware/grayware/spyware from remote sites. It is a specially crafted PDF file which when
Trend Micro has flagged this {malware/spyware type} as noteworthy due to the increased potential for damage, propagation, or both, that it possesses. Specifically, it employs polymorphism to prevent
Trend Micro has flagged this malware as noteworthy due to the increased potential for damage, propagation, or both, that it possesses. Specifically, it exploits an unknown vulnerability in Adobe
It takes advantage of software vulnerabilities to download files. This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites. It
This Trojan may be downloaded by other malware/grayware from remote sites. Arrival Details This Trojan may be downloaded by the following malware/grayware from remote sites: TROJ_DLDER.AU It may be
This Trojan may arrive as a file that exports functions used by other malware. It may be dropped by other malware. It is injected into all running processes to remain memory resident. However, as of
This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites. It executes the dropped file(s). As a result, malicious routines of the
This Trojan poses as a legitimate antivirus software using various commercial names. Similar to other FAKEAV variants, TROJ_FAKEAV.KQWL also displays several graphical users interfaces (GUIs) to
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It modifies Internet Explorer security settings. This
This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites. It executes the downloaded files. As a result, malicious routines of the
This Trojan has received attention from independent media sources and/or other security firms. To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Threat Diagram shown
This Trojan may be downloaded by other malware/grayware/spyware from remote sites. It may be dropped by other malware. It executes the dropped file(s). As a result, malicious routines of the dropped
This Trojan takes advantage of a known vulnerability in Adobe Reader and Acrobat version 9.x before 9.4 and 8.x before 8.2.5. It executes the files it drops, prompting the affected system to exhibit
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It may be unknowingly downloaded by a user while visiting malicious websites. As of this
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
Installation This Trojan drops the following files: %temp%\set.jtd - normal ichitaro file %temp%\ews.exe - detected by Trend Micro as TROJ_DROPPER.BIY Other Details This Trojan does the following: