Virus:TR/FraudPack.ams
Date discovered:01/10/2009
Type:Trojan
Subtype:Dropper
In the wild:Yes
Reported Infections:Low
Distribution Potential:Low
Damage Potential:Low
Static file:Yes
File size:65.536 Bytes
MD5 checksum:a44f0A660223e92d3119d49e5fce20ef
IVDF version:7.01.06.61 - Thursday, October 1, 2009

 General Method of propagation:
   • No own spreading routine


Platforms / OS:
   • Windows 95
   • Windows 98
   • Windows 98 SE
   • Windows NT
   • Windows ME
   • Windows 2000
   • Windows XP
   • Windows 2003


Side effects:
   • Drops malicious files

 Files The following files are created:

%TEMPDIR%\~%number%.tmp Furthermore it gets executed after it was fully created. Further investigation pointed out that this file is malware, too. Detected as: TR/FakeAV.RK

%TEMPDIR%\~%number%.tmp Furthermore it gets executed after it was fully created. Further investigation pointed out that this file is malware, too. Detected as: TR/Drop.Keylog.FR

Description inserted by Lutz Koch on Thursday, October 1, 2009
Description updated by Lutz Koch on Thursday, October 1, 2009

Back . . . .