Search
Keyword: TROJ_PSYME
This Trojan arrives as an attachment to email messages spammed by other malware/grayware/spyware or malicious users. It arrives on a system as a file dropped by other malware or as a file downloaded
Trend Micro has flagged this Trojan as noteworthy due to the increased potential for damage, propagation, or both, that it possesses. Specifically, it exploits a 0-day vulnerability in Adobe Flash
It enumerates running services and randomly chooses a service name to use as its file name. This Trojan may be dropped by other malware. It adds registry entries to enable its automatic execution at
This Trojan executes the dropped file(s). As a result, malicious routines of the dropped files are exhibited on the affected system. This Trojan takes advantage of software vulnerabilities to allow a
It takes advantage of certain vulnerabilities. Dropping Routine This Trojan drops the following files: %User Temp%\winword.exe - detected as TROJ_DINGU.B (Note: %User Temp% is the current user's Temp
To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Threat Diagram shown below. This Trojan arrives as attachment to mass-mailed email messages. It may be downloaded
It may be dropped by other malware. It executes the downloaded files. As a result, malicious routines of the downloaded files are exhibited on the affected system. Arrival Details It may be dropped
This Trojan is found to have an increased potential for damage, propagation, or both. Specifically, it has the ability to filter and block an infected system's connection to the cloud. To get a
This Trojan may be dropped by other malware. It adds registry entries to enable its automatic execution at every system startup. It disables antivirus services. This is done to allow this malware to
This Trojan deletes itself after execution. Installation This Trojan drops the following copies of itself into the affected system: %System%\{random filename}.exe (Note: %System% is the Windows
Trend Micro has flagged this Trojan as noteworthy due to the increased potential for damage, propagation, or both, that it possesses. It also uses social engineering methods to lure users into
It may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites. Arrival Details It may be dropped by other malware. It may be unknowingly downloaded
It may be unknowingly downloaded by a user while visiting malicious websites. It arrives as attachment to mass-mailed email messages. It executes the dropped file(s). As a result, malicious routines
It may be downloaded by other malware/grayware/spyware from remote sites. It may be dropped by other malware. It arrives on a system as a file dropped by other malware or as a file downloaded
This malware exploits a software vulnerability in order to drop a malicious file onto the affected system. It also drops and opens a document file in order to hide its malicious routines. Once a
This Trojan executes then deletes itself afterward. Installation This Trojan drops the following copies of itself into the affected system: %User Profile%\cisvc.exe (Note: %User Profile% is the
This Trojan may be dropped by other malware. Arrival Details This Trojan may be dropped by the following malware: TROJ_WALEDAC.AIR Autostart Technique This Trojan adds the following registry entries
This Trojan accesses websites to download files. This action allows this malware to possibly add other malware on the affected computer. It executes the downloaded files. As a result, malicious
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It arrives as attachment to mass-mailed email messages. It may be dropped by other
It takes advantage of the Excel Featheader Record Memory Corruption Vulnerability. This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious