Search
Keyword: TROJ_PSYME
This worm arrives as attachment to mass-mailed email messages. It arrives via removable drives. It adds registry entries to enable its automatic execution at every system startup. It drops an
This Trojan arrives as an attachment to email messages spammed by other malware/grayware/spyware or malicious users. It bears the file icons of certain applications to avoid easy detection and
This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites. Arrival Details This Trojan may be dropped by other malware. It may be
This Trojan may be dropped by other malware. It adds registry entries to enable its automatic execution at every system startup. Arrival Details This Trojan may be dropped by other malware.
This Trojan may be downloaded by other malware/grayware/spyware from remote sites. It may be unknowingly downloaded by a user while visiting malicious websites. It adds registry entries to enable its
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It contains errors in its code. This stops it from
This malware is a document file used by Ichitaro, a word processing application produced by JustSystem. It uses a .JTD extension name. Upon execution, this malware drops and executes an embedded
This Trojan may be dropped by other malware. It may arrive bundled with malware packages as a malware component. It executes the dropped file(s). As a result, malicious routines of the dropped files
This Trojan executes the files it drops, prompting the affected system to exhibit the malicious routines they contain. Dropping Routine This Trojan drops the following files: %System%\esentprf32.dll
To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Threat Diagram shown below. This Trojan may be downloaded from remote sites by other malware. It adds registry
Trend Micro has flagged this Trojan as noteworthy due to the increased potential for damage, propagation, or both, that it possesses. This Trojan is related to another noteworthy entry BKDR_VBOT.A To
This Trojan may be downloaded by other malware/grayware/spyware from remote sites. It may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites.
This Trojan modifies HTTP traffic on the local network in order to inject a malicious script on the HTML page whenever a user visits a website. It utilizes WinPcap libraries in order to execute the
This Trojan may be dropped by other malware. It arrives as a component bundled with malware/grayware/spyware packages. It adds registry entries to enable its automatic execution at every system
This Trojan may arrive bundled with malware packages as a malware component. It may be dropped by other malware. Arrival Details This Trojan may arrive bundled with malware packages as a malware
It may be dropped by other malware. It may arrive bundled with malware packages as a malware component. It may arrive as a file that exports functions used by other malware. It requires its main
Infection Points It may be downloaded from the following remote sites: {BLOCKED}eakme.com Other Details Based on analysis of the codes, it has the following capabilities: Exploits a vulnerability in
Download Routine It takes advantage of the following software vulnerabilities to allow a remote user or malware/grayware/spyware to download files: Vulnerability in the Adobe Acrobat and Reader
It arrives as a file that exports the functions of other malware/grayware/spyware. It may be unknowingly downloaded by a user while visiting malicious websites. It may be dropped by other malware. It
It may be downloaded by other malware/grayware/spyware from remote sites. It arrives as an attachment to email messages spammed by other malware/grayware/spyware or malicious users. Arrival Details