Need help? Ask the community or hire an expert.
Go to Avira Answers
Date discovered:20/08/2012
In the wild:Yes
Reported Infections:High
Distribution Potential:Low
Damage Potential:Low to medium
Static file:Yes
File size:161.280 Bytes
MD5 checksum:d1165e1e6fb181f590752529074d6d1a
VDF version: - Monday, August 20, 2012
IVDF version: - Monday, August 20, 2012

 General Method of propagation:
   • No own spreading routine

   •  Symantec: Trojan.Gen.2
   •  Mcafee: Artemis!D1165E1E6FB1
   •  Kaspersky: Trojan.Win32.Jorik.IRCbot.qwg
   •  TrendMicro: TROJ_GEN.F47V0820
   •  F-Secure: Trojan.Downloader.JPMU
   •  Sophos: Troj/Agent-XNK
   •  Bitdefender: Trojan.Downloader.JPMU
     Avast: Win32:Trojan-gen
     Microsoft: TrojanDownloader:Win32/Pitol.A
   •  Panda: Trj/CI.A
     PCTools: Trojan.Gen
   •  Eset: Win32/TrojanDownloader.Small.PLG
     GData: Trojan.Downloader.JPMU
AhnLab: Win-Trojan/Jorik.161280
     DrWeb: Trojan.DownLoader6.45943
     Fortinet: W32/Jorik_IRCbot.QWG!tr
     Norman: W32/Suspicious_Gen4.AUJDK

Platforms / OS:
   • Windows 2000
   • Windows XP
   • Windows 2003
    Windows Vista
    Windows Server 2008
    Windows 7

Side effects:
   • Registry modification

 Registry The following registry key is added:

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings]

 File details Programming language:
The malware program was written in Delphi.

Description inserted by Lars Wittig on Tuesday, August 21, 2012
Description updated by Lars Wittig on Tuesday, August 21, 2012

Back . . . .