Need help? Ask the community or hire an expert.
Go to Avira Answers
Date discovered:01/11/2011
In the wild:No
Reported Infections:Low to medium
Distribution Potential:Low
Damage Potential:Low to medium
Static file:No
VDF version: - Tuesday, November 1, 2011
IVDF version: - Tuesday, November 1, 2011

 General Method of propagation:
   • No own spreading routine

   •  Kaspersky: Trojan-Downloader.JS.Agent.gjv
   •  Bitdefender: Exploit.JS.Blacole.G
     DrWeb: Exploit.JavaScript.165

Platforms / OS:
   • Windows 95
   • Windows 98
   • Windows 98 SE
   • Windows NT
   • Windows ME
   • Windows 2000
   • Windows XP
   • Windows 2003
    Windows Vista
    Windows Server 2008
    Windows 7

Side effects:
    Can be used to execute malicious code
    Drive-by download
   • Makes use of software vulnerability

 Files It tries to download some files:

The location is the following:
   • %given parameter%
It is saved on the local hard drive under: %TEMPDIR%/%random numbers%.exe Furthermore this file gets executed after it was fully downloaded.

 File details Programming language:
 • JavaScript

Encrypted - The virus code inside the file is encrypted.

Description inserted by Chiaho Heng on Wednesday, November 2, 2011
Description updated by Chiaho Heng on Wednesday, November 2, 2011

Back . . . .