Need help? Ask the community or hire an expert.
Go to Avira Answers
Date discovered:22/02/2013
In the wild:No
Reported Infections:High
Distribution Potential:Low
Damage Potential:Low
Static file:Yes
File size:28.164 Bytes
MD5 checksum:218196f89850ad1a9ac4e1523ccd3654
VDF version:
IVDF version:

 General Method of propagation:
   • No own spreading routine

   •  AVG: Dropper.Generic7.BRMR
   •  Eset: Win32/Trustezeb.C

Platforms / OS:
   • Windows 2000
   • Windows XP
   • Windows 2003
   • Windows Vista
   • Windows Server 2008
   • Windows 7

 Files It copies itself to the following location:
   • C:\TEMP\%10 digit random character string% .pre

 Injection – It injects itself as a thread into a process.

    One of the following processes:
   • svchost.exe
   • explorer.exe

   If the malware fails, it terminates itself.

 File details Programming language:
The malware program was written in MS Visual C++.

Description inserted by Martin Muench on Saturday, February 23, 2013
Description updated by Martin Muench on Saturday, February 23, 2013

Back . . . .