Need help? Ask the community or hire an expert.
Go to Avira Answers
Virus:EXP/Pidief.IM.1
Date discovered:19/01/2009
Type:Exploit
In the wild:No
Reported Infections:Low
Distribution Potential:Low
Damage Potential:Low to medium
Static file:Yes
File size:3.502 Bytes
MD5 checksum:665c977cb60Deefc7123795f59305fa3
IVDF version:7.01.01.138 - Monday, January 19, 2009

 General Method of propagation:
   • No own spreading routine


Aliases:
   •  Sophos: Troj/PdfJS-U
   •  Eset: PDF/Exploit.Pidief.NLM


Platforms / OS:
   • Windows 2000
   • Windows XP
   • Windows 2003


Side effects:
   • Downloads a malicious file
   • Makes use of software vulnerability

 Files It tries to download a file:

– The location is the following:
   • http://213.155.7.248/frooolhs/load**********
It is saved on the local hard drive under: %TEMPDIR%\e.exe Furthermore this file gets executed after it was fully downloaded. Further investigation pointed out that this file is malware, too.

Description inserted by Adriana Popa on Wednesday, April 22, 2009
Description updated by Adriana Popa on Wednesday, April 22, 2009

Back . . . .