Need help? Ask the community or hire an expert.
Go to Avira Answers
Virus:TR/Dldr.WMF.Harnig
Date discovered:27/12/2005
Type:Trojan
Subtype:Downloader
In the wild:Yes
Reported Infections:Low
Distribution Potential:Low
Damage Potential:Medium
Static file:Yes
File size:16.036 Bytes
MD5 checksum:263315b708b665bc53c79baaec949566
VDF version:6.33.00.74

 Important information  This malware makes use of a 0-day vulnerability in WMF files. The exploit code may use this vulnerability resulting in a buffer overflow and execution of arbitrary code. A detailed description can be found here: www.securityfocus.com/bid/16074
 General Method of propagation:
   • No own spreading routine


Alias:
   •  Kaspersky: Trojan-Downloader.Win32.Agent.acd


Platform / OS:
   • Windows XP


Side effects:
   • Downloads a malicious file
   • Makes use of software vulnerability
Description inserted by Oliver Auerbach on Wednesday, December 28, 2005
Description updated by Cosmin Ancuta on Wednesday, December 28, 2005

Back . . . .