Search
Keyword: troj_meredrop.qo
This Trojan may be downloaded by other malware/grayware/spyware from remote sites. It may be unknowingly downloaded by a user while visiting malicious websites. It may be manually installed by a
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It modifies files, disabling programs and applications
This Trojan may be dropped by other malware. Arrival Details This Trojan may be dropped by the following malware: TROJ_PIDIEF.OB Installation This Trojan drops and executes the following files: %Temp
Once a malware successfully exploits the said vulnerability, it causes certain actions to be done on the system. Installation This Trojan drops the following non-malicious file: c:\{ascii characters
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It modifies system files, disabling system programs from
However, as of this writing, the said sites are inaccessible. It executes the dropped file(s). As a result, malicious routines of the dropped files are exhibited on the affected system. Installation
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It bears the file icons of certain applications to avoid
This Trojan arrives as an attachment to email messages spammed by other malware/grayware or malicious users. It executes the downloaded files. As a result, malicious routines of the downloaded files
Related malware is TROJ_DLOADR.SMVE This Trojan deletes itself after execution. Installation This Trojan drops the following files: %System%\thxr.wgo - detected as TROJ_DLOADR.SMVE (Note: %System% is
Installation This Trojan drops the following files: %System Root%\Documents and Settings\All Users\Application Data\mIbMkFp00000\mIbMkFp00000 %System Root%\Documents and Settings\All Users
This Trojan has received attention from independent media sources and/or other security firms. To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Threat Diagram shown
This Trojan injects itself into Internet Explorer when executed. It also connects to a website in an attempt to possibly download files that may be malicious onto the infected system. Installation
This Trojan has increased potential for damage, propagation, or both, that it possesses. Specifically, it is related to an attack that involves blackhat SEO poisoning of Google Image search results.
Other System Modifications This Trojan adds the following registry entries: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows NT\CurrentVersion\Winlogon EnableConcurrentSessions = 1 HKEY_LOCAL_MACHINE
This Trojan may be downloaded by other malware/grayware/spyware from remote sites. It may be dropped by other malware. It executes the dropped file(s). As a result, malicious routines of the dropped
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It connects to certain URLs. It may do this to remotely
This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites. It executes the downloaded files. As a result, malicious routines of the
It accesses a website to download files. This Trojan may be dropped by other malware. It may be unknowingly downloaded by a user while visiting malicious websites. However, as of this writing, the
Trend Micro has received multiple samples of this malware from a malicious domain source that have infected many clients. These indicate that this malware poses a high risk to users due to the
This is a component of another malware that exports functions that may be used to perform its malicious routines. This Trojan arrives as a component bundled with malware/grayware packages. It may be