Date discovered:22/10/2008
In the wild:Yes
Reported Infections:Low
Distribution Potential:Low to medium
Damage Potential:Low
Static file:Yes
File size:185.392 Bytes
MD5 checksum:f14f89211fd6723b4e245502ddcb7eff
IVDF version:

 General Method of propagation:
   • Autorun feature

   •  Panda: Trj/Qhost.JT
   •  Eset: Win32/Agent.OKD
   •  Bitdefender: Trojan.Downloader.JLEL

Platforms / OS:
   • Windows 2000
   • Windows XP
   • Windows 2003

Side effects:
   • Downloads a malicious file
   • Drops a malicious file

 Files It deletes the initially executed copy of itself.

The following file is created:


It tries to download a file:

– The location is the following:
   • http://wl.dwen24.com/v306/**********
At the time of writing this file was not online for further investigation.

 File details Runtime packer:
In order to aggravate detection and reduce size of the file it is packed with a runtime packer.

説明の挿入者 Petre Galan の 2010年3月1日月曜日
説明の更新者 Petre Galan の 2010年3月2日火曜日

戻る . . . .