Search
Keyword: TROJ_PSYME
This Trojan uses common file icons to trick a user into thinking that the files are legitimate. It executes the dropped file(s). As a result, malicious routines of the dropped files are exhibited on
This Trojan deletes itself after execution. Installation This Trojan drops the following files: {malware path}\{malware file name} %System Root%\Documents and Settings\All Users\Application Data
This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites. It executes the downloaded files. As a result, malicious routines of the
This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites. However, as of this writing, the said sites are inaccessible. It deletes
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
This Trojan may be dropped by other malware. It opens a hidden Internet Explorer window. It connects to certain URLs. It may do this to remotely inform a malicious user of its installation. It may
Installation This Trojan drops the following files: %User Temp%\Temp\notpad.exe - also detected as TROJ_HIDFILE.INF %User Temp%\Temp\RGZ DECODER.EXE - non-malicious file (Note: %User Temp% is the
Installation This Trojan drops the following files: %User Profile%\Application Data\Adobe\AdobeUpdate .exe - non malicious %current folder%\err.log{random numbers} - detected by Trend Micro as
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It may be dropped by other malware. It executes the files it drops, prompting the affected
This Trojan arrives as attachment to mass-mailed email messages. It connects to certain URLs. It may do this to remotely inform a malicious user of its installation. It may also do this to download
This Trojan may arrive bundled with malware packages as a malware component. It may be downloaded by other malware/grayware/spyware from remote sites. It is a specially crafted PDF file which when
Trend Micro has flagged this {malware/spyware type} as noteworthy due to the increased potential for damage, propagation, or both, that it possesses. Specifically, it employs polymorphism to prevent
Trend Micro has flagged this malware as noteworthy due to the increased potential for damage, propagation, or both, that it possesses. Specifically, it exploits an unknown vulnerability in Adobe
It takes advantage of software vulnerabilities to download files. This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites. It
This Trojan may be downloaded by other malware/grayware from remote sites. Arrival Details This Trojan may be downloaded by the following malware/grayware from remote sites: TROJ_DLDER.AU It may be
This Trojan may arrive as a file that exports functions used by other malware. It may be dropped by other malware. It is injected into all running processes to remain memory resident. However, as of
This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites. It executes the dropped file(s). As a result, malicious routines of the
This Trojan poses as a legitimate antivirus software using various commercial names. Similar to other FAKEAV variants, TROJ_FAKEAV.KQWL also displays several graphical users interfaces (GUIs) to
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It modifies Internet Explorer security settings. This
This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites. It executes the downloaded files. As a result, malicious routines of the