Du brauchst Hilfe? Frage die Community oder wende dich an einen Experten.
Zu Avira Answers
Virus:EXP/JS.Blackhole.K
Date discovered:02/10/2012
Type:Exploit
In the wild:No
Reported Infections:Low
Distribution Potential:Low
Damage Potential:Low
VDF version:7.11.44.246 - Tuesday, October 2, 2012
IVDF version:7.11.44.246 - Tuesday, October 2, 2012

 General Method of propagation:
   • No own spreading routine


Aliases:
   •  Mcafee: trojan
   •  Kaspersky: Trojan-Downloader.JS.Expack.aex
   •  Grisoft: Script/Exploit.Kit


Platforms / OS:
   • Windows 2000
   • Windows XP
   • Windows 2003
   • Windows Vista
   • Windows Server 2008
   • Windows 7


Side effects:
   • Can be used to execute malicious code
   • Drive-by download

 Files It tries to download a file:

– The location is the following:
   • http://146.**********.**********.244/font.php
It is saved on the local hard drive under: %temp%/wlsidten.dll Furthermore this file gets executed after it was fully downloaded. Further investigation pointed out that this file is malware, too. Detected as: TR/Winlock.HM

 File details Programming language:
 • JavaScript


Encryption:
Encrypted - The virus code inside the file is encrypted.

Die Beschreibung wurde erstellt von Wensin Lee am Donnerstag, 4. Oktober 2012
Die Beschreibung wurde geändert von Wensin Lee am Montag, 8. Oktober 2012

zurück . . . .