Need help? Ask the community or hire an expert.
Go to Avira Answers
Date discovered:19/10/2011
In the wild:No
Reported Infections:Low
Distribution Potential:Low to medium
Damage Potential:Medium
Static file:Yes
File size:85.504 Bytes
MD5 checksum:9749d38ae9b9ddd81b50aad679ee87ec
VDF version: - Wednesday, October 19, 2011
IVDF version: - Wednesday, October 19, 2011

 General Method of propagation:
   • No own spreading routine

   •  Mcafee: PWS-Duqu.dr
   •  Kaspersky: Trojan.Win32.Inject.bjyg
   •  Sophos: Troj/Bdoor-BDA
     Microsoft: Trojan:Win32/Hideproc.G
   •  Panda: Trj/Duqu.A
   •  Eset: Win32/Duqu.A
AhnLab: Trojan/Win32.Duqu
     DrWeb: Trojan.PWS.Duqu.1

Platforms / OS:
   • Windows 2000
   • Windows XP
   • Windows 2003
    Windows Vista
    Windows 7

Side effects:
   • Drops files
   • Steals information

 Files The following file is created:

Non malicious file:
   • %TEMPDIR%\%random%

 Stealing      Keystrokes
     Window information

 File details Programming language:
The malware program was written in MS Visual C++.

Description inserted by Eric Burk on Wednesday, October 19, 2011
Description updated by Eric Burk on Thursday, October 20, 2011

Back . . . .