Need help? Ask the community or hire an expert.
Go to Avira Answers
Virus:EXP/2010-0840.P
Date discovered:30/09/2011
Type:Exploit
In the wild:No
Reported Infections:Medium to high
Distribution Potential:Low
Damage Potential:Low to medium
Static file:Yes
File size:6.291 Bytes
MD5 checksum:0280086631e8f8644a8888f084876298
VDF version:7.11.15.84 - Friday, September 30, 2011
IVDF version:7.11.15.84 - Friday, September 30, 2011

 General Method of propagation:
   • No own spreading routine


Aliases:
   •  Microsoft: Exploit:Java/CVE-2010-0840.MB
   •  GData: Java:Agent-WY
   •  DrWeb: Exploit.CVE2010-0840.20
   •  Java/Exdoer.GH.5
   •  Java/Exdoer.GA


Platforms / OS:
   • Windows 2000
   • Windows XP
   • Windows 2003
   • Windows Vista
   • Windows Server 2008
   • Windows 7


Side effects:
   • Drive-by download
   • Lowers security settings
   • Makes use of software vulnerability
      •  CVE-2010-0840

 Files It tries to download some files:

– The location is the following:
   • http://www.achislame.com/956414X/**********
It is saved on the local hard drive under: %TEMPDIR%\%random numbers%.exe Furthermore this file gets executed after it was fully downloaded.

– The location is the following:
   • http://www.achislame.com/956414X/**********
It is saved on the local hard drive under: %TEMPDIR%\%random numbers%.exe Furthermore this file gets executed after it was fully downloaded.

 File details Programming language:
 • Java


Encryption:
Encrypted - The virus code inside the file is encrypted.

Description inserted by Alexander Bauer on Friday, October 14, 2011
Description updated by Alexander Bauer on Friday, October 14, 2011

Back . . . .