Virus:Java/ClassLoader.AB
Date discovered:21/04/2010
Type:Trojan
Subtype:Java
In the wild:Yes
Reported Infections:High
Distribution Potential:Low
Damage Potential:Low to medium
Static file:Yes
File size:3.243 Bytes
MD5 checksum:8aa1a8f89b155856f1f50De8c2ea9ad0
IVDF version:7.10.11.00 - Monday, August 23, 2010

 General Method of propagation:
   • No own spreading routine


Aliases:
   •  Symantec: Trojan Horse
   •  Mcafee: Exploit-ByteVerify
   •  Kaspersky: Trojan-Downloader.Java.OpenStream.al
   •  TrendMicro: JAVA_DLAGENT.B
   •  F-Secure: Trojan:W32/Agent.DIYS
   •  Sophos: Troj/Clsldr-AE
   •  Microsoft: TrojanDownloader:Java/OpenStream.F
   •  AVG: Exploit_c.DSS
   •  PCTools: Exploit.Java.OpenStream
   •  Eset: Java/TrojanDownloader.Agent.NAM
   •  Authentium: Java/Downloader.C
   •  DrWeb: Exploit.Java.38
   •  Ikarus: Trojan-Downloader.Java.OpenStream
   •  Norman: DLoader.AILVF

It was previously detected as:
   •  Java/Agent.3243


Platforms / OS:
   • Windows 98
   • Windows 98 SE
   • Windows NT
   • Windows ME
   • Windows 2000
   • Windows XP
   • Windows 2003
   • Windows Vista
   • Windows Server 2008
   • Windows 7


Side effects:
   • Lowers security settings

 Files It tries to executes the following file:

– Filename:
   • LoaderX.class
Furthermore it contains malicious code.

 File details Encryption:
Encrypted - The virus code inside the file is encrypted.

Description inserted by Carlos Valero Llabata on Thursday, August 19, 2010
Description updated by Carlos Valero Llabata on Monday, August 23, 2010

Back . . . .