Need help? Ask the community or hire an expert.
Go to Avira Answers
Date discovered:23/10/2008
In the wild:Yes
Reported Infections:Low
Distribution Potential:Low
Damage Potential:Low to medium
Static file:No
File size:~ 24.800 Bytes
IVDF version:

 General Method of propagation:
   • No own spreading routine

   •  Kaspersky: Exploit.Java.Gimsh.a
   •  F-Secure: Exploit.Java.Gimsh.a

Platforms / OS:
   • Windows NT
   • Windows 2000
   • Windows XP
   • Windows 2003

Side effects:
   • Downloads a malicious file
   • Makes use of software vulnerability

 Files It tries to download a file:

– The location is the following:
   • http://**********
It is saved on the local hard drive under: C:\x.exe Furthermore this file gets executed after it was fully downloaded. Further investigation pointed out that this file is malware, too. Detected as: TR/Agent.wyo

Description inserted by Thomas Wegele on Friday, November 7, 2008
Description updated by Thomas Wegele on Friday, November 7, 2008

Back . . . .