Search
Keyword: troj_cryptesla
This Trojan deletes itself after execution. Installation This Trojan drops the following copies of itself into the affected system: %System%\{random filename}.exe (Note: %System% is the Windows
Trend Micro has flagged this Trojan as noteworthy due to the increased potential for damage, propagation, or both, that it possesses. It also uses social engineering methods to lure users into
It may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites. Arrival Details It may be dropped by other malware. It may be unknowingly downloaded
It may be unknowingly downloaded by a user while visiting malicious websites. It arrives as attachment to mass-mailed email messages. It executes the dropped file(s). As a result, malicious routines
It may be downloaded by other malware/grayware/spyware from remote sites. It may be dropped by other malware. It arrives on a system as a file dropped by other malware or as a file downloaded
This malware exploits a software vulnerability in order to drop a malicious file onto the affected system. It also drops and opens a document file in order to hide its malicious routines. Once a
This Trojan executes then deletes itself afterward. Installation This Trojan drops the following copies of itself into the affected system: %User Profile%\cisvc.exe (Note: %User Profile% is the
This Trojan may be dropped by other malware. Arrival Details This Trojan may be dropped by the following malware: TROJ_WALEDAC.AIR Autostart Technique This Trojan adds the following registry entries
This Trojan accesses websites to download files. This action allows this malware to possibly add other malware on the affected computer. It executes the downloaded files. As a result, malicious
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It arrives as attachment to mass-mailed email messages. It may be dropped by other
It takes advantage of the Excel Featheader Record Memory Corruption Vulnerability. This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It installs a fake antivirus/antispyware software. It
This Trojan has received attention from independent media sources and/or other security firms. To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Threat Diagram shown
This Trojan may be downloaded by other malware/grayware/spyware from remote sites. It may be unknowingly downloaded by a user while visiting malicious websites. It deletes itself after execution.
This Trojan may be unknowingly downloaded by a user while visiting malicious websites. Arrival Details This Trojan may be unknowingly downloaded by a user while visiting malicious websites. Other
This is the Trend Micro detection for files that exhibit certain behaviors. Other Details This is the Trend Micro detection for: Master Boot Record that are infected by other malware. It does the
As of this writing, the said sites are inaccessible. Installation This Trojan drops the following files: %User Profile%\pizda_ntload.dll - detected as TROJ_DROPPER.PXH (Note: %User Profile% is the
This Trojan executes the files it drops, prompting the affected system to exhibit the malicious routines they contain. It deletes itself after execution. Dropping Routine This Trojan drops the
It drops a .SYS file, which is an encrypted file decrypted by its main component in memory to perform its intended routine. When successfully installed on the affected system, it may connect to the
Trojans or Trojan horse programs refer to a family of malware that carry payloads or other malicious actions that can range from the mildly annoying to the irreparably destructive. They can also