Need help? Ask the community or hire an expert.
Go to Avira Answers
Virus:TR/PSW.Tepfer.bhrm.1
Date discovered:16/10/2012
Type:Trojan
In the wild:No
Reported Infections:Low to medium
Distribution Potential:Low
Damage Potential:Low to medium
Static file:Yes
File size:152.064 Bytes
MD5 checksum:3A828A6632CD185D02DCA34E4A12C18E
VDF version:7.11.46.62 - Tuesday, October 16, 2012
IVDF version:7.11.46.62 - Tuesday, October 16, 2012

 General Method of propagation:
   • No own spreading routine


Aliases:
   •  Kaspersky: Trojan-PSW.Win32.Tepfer.bhrm
   •  Sophos: Troj/Karag-K
   •  Bitdefender: Trojan.Generic.KD.761915
   •  Eset: Win32/Spy.Zbot.AAN
   •  DrWeb: Trojan.PWS.Stealer.946


Platforms / OS:
   • Windows 2000
   • Windows XP
   • Windows 2003
   • Windows Vista
   • Windows Server 2008
   • Windows 7


Side effects:
   • Downloads malicious files

 Files It tries to download some files:

– The location is the following:
   • http://ak**********pT.exe
It is saved on the local hard drive under: %TEMPDIR%\1207859.exe Furthermore this file gets executed after it was fully downloaded. Further investigation pointed out that this file is malware, too. Detected as: TR/Buzus.HL.2619


– The location is the following:
   • http://12**********8.exe
It is saved on the local hard drive under: %TEMPDIR%\1204421.exe Furthermore this file gets executed after it was fully downloaded. Further investigation pointed out that this file is malware, too. Detected as: TR/Buzus.HL.2619

Description inserted by Eric Burk on Wednesday, October 17, 2012
Description updated by Eric Burk on Wednesday, October 17, 2012

Back . . . .