Search
Keyword: TROJ_PSYME
This Trojan may arrive as a file dropped by TROJ_TDSS.WIN. Its primary function is to log the Internet browsing activities of the user by keeping a record of keywords entered in search engines. It
This Trojan uses social engineering methods to lure users into performing certain actions that may, directly or indirectly, cause malicious routines to be performed. Specifically, it makes use of
This is the Trend Micro detection for files that exhibit certain behaviors. Other Details This is the Trend Micro detection for: Files targeting Trend Micro OfficeScan Corporate Edition (OSCE)
This Trojan modifies certain registry entries. It connects to certain URL(s) to download its component file(s). It saves the files it downloads using certain file names. Trend Micro detects the
This is the Trend Micro detection for files that exhibit certain behaviors. Other Details This is the Trend Micro detection for: Malicious files which contain prepended codes in its malware body.
When executed, it connects to servers to receive commands from the remote user. It also attempts to hide its component files by writing specific files at the end of the infected system's hard disk.
This Trojan may be downloaded by other malware/grayware from remote sites. Arrival Details This Trojan may be downloaded by the following malware/grayware from remote sites: TROJ_DLOADR.FG It may be
This Trojan comes with a .DLL file which is executed when Microsoft Word is successfully exploited. This Trojan arrives on a system as a file dropped by other malware or as a file downloaded
This Trojan may be unknowingly downloaded by a user while visiting malicious websites. It may be dropped by other malware. Arrival Details This Trojan may be unknowingly downloaded by a user while
This Trojan drops a non-malicious .PDF file in its current directory as {FILE NAME}.PDF and opens the said file to hide its execution. It parses the content from certain URLs. Depending on the
This is the Trend Micro detection for the encrypted configuration file of the TROJ_DUQU malware family. It contains certain configurations. The configuration file has certain settings. NOTES: This is
This Trojan may be downloaded by other malware/grayware from remote sites. It connects to certain websites to send and receive information. Arrival Details This Trojan may be downloaded by the
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
This Trojan may be dropped by other malware. It does not have any propagation routine. It does not have any backdoor routine. It executes the dropped file(s). As a result, malicious routines of the
This malware is possibly connected with DUQU malware, which shares code similarities in STUXNET malware. To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Threat
This Trojan hides all files on the system. It drops files detected as BKDR_INJECT.BKP and TROJ_DROPPR.CZ. This Trojan arrives on a system as a file dropped by other malware or as a file downloaded
This Trojan may be downloaded from remote sites by other malware. It connects to certain URLs. It may do this to remotely inform a malicious user of its installation. It may also do this to download
This Trojan may be dropped by other malware. It executes the downloaded files. As a result, malicious routines of the downloaded files are exhibited on the affected system. It connects to certain
This Trojan may be dropped by other malware. It deletes the initially executed copy of itself. Arrival Details This Trojan may be dropped by the following malware: TROJ_DROPPI.PDF TROJ_PIDIEF.FUA
This description is based is a compiled analysis of several variants of TROJ_PIDIEF. Note that specific data such as file names and registry values may vary for each variant. This Trojan arrives as