Need help? Ask the community or hire an expert.
Go to Avira Answers
Virus:EXP/Pidief.djn
Date discovered:09/10/2012
Type:Exploit
In the wild:No
Reported Infections:Low
Distribution Potential:Low
Damage Potential:Low
VDF version:7.11.45.158 - maandag 8 oktober 2012
IVDF version:7.11.45.158 - maandag 8 oktober 2012

 General Method of propagation:
   • No own spreading routine


Aliases:
   •  Mcafee: Exploit-PDF!Blacole.o
   •  Kaspersky: Exploit.JS.Pdfka.gfl
   •  Sophos: Troj/PDFJs-AAU
   •  Microsoft: Exploit:Win32/Pdfjsc.ADH
   •  Eset: JS/Exploit.Pdfka.PSR
   •  GData: Exploit.PDF-JS.GW
   •  DrWeb: Exploit.PDF.3010


Platforms / OS:
   • Windows 2000
   • Windows XP
   • Windows 2003
   • Windows Vista
   • Windows Server 2008
   • Windows 7


Side effects:
   • Drive-by download

 Files It tries to download a file:

– The location is the following:
   • http://leninde**********.ru:8080/forum/links/col**********.php?xewvxbl=0609040706&peyfcons=3307093738070736060b&vxo=03&wim=cdrcmm&mjc=ysnrwngx
Further investigation pointed out that this file is malware, too.

 File details Programming language:
 • JavaScript


Encryption:
Encrypted - The virus code inside the file is encrypted.

Description inserted by Wensin Lee on Friday, October 12, 2012
Description updated by Wensin Lee on Friday, October 12, 2012

Back . . . .