Virus:TR/Hijack.AE
Date discovered:10/11/2008
Type:Trojan
In the wild:Yes
Reported Infections:Low to medium
Distribution Potential:Low
Damage Potential:Low
Static file:No
File size:~19.500 Bytes
IVDF version:7.01.00.65 - Monday, November 10, 2008

 General Method of propagation:
   • No own spreading routine


Platforms / OS:
   • Windows 2000
   • Windows XP
   • Windows 2003


Side effects:
   • Downloads malicious files
   • Steals information

 Backdoor Contact server:
The following:
   • %given parameter%

As a result it may send information and remote control could be provided. This is done via the HTTP POST method using a PHP script.

 Injection – It injects itself into a process.

    Process name:
   • %given parameter%


 File details Programming language:
 The malware program was written in MS Visual C++.

Description inserted by Andrei Gherman on Monday, November 17, 2008
Description updated by Andrei Gherman on Monday, November 17, 2008

Back . . . .