SecurityHome.eu Trojan.Downloader.Exchanger.Gen.1

Home / malware PDF

Trojan.Downloader.Exchanger.Gen.1

First posted on 21 November 2011.
Source: BitDefender
Aliases :
Trojan.Downloader.Exchanger.Gen.1 is also known as Trojan-Downloader.Win32.Exchanger.bt, Trojan-Downloader.Win32.Agent.uwl, Trj/Downloader.TYQ, Trojan.Erotpics.
Explanation :
The malware spreads through links in unsolicited/spam e-mail messages, where the user is tricked that he will see explicit videos with celebrities like Angelina Jolie. When clicking the link, the malware will be downloaded and run on the computer.
Once executed, the file copies itself to the system directory (usually c:windowssystem32) as CbEvtSvc.exe and registers itself as a service with the same name that will be automatically started at every system reboot.
In addition, it will connect to a specific server in order to download and execute some other malicious files.
Last update 21 November 2011

TOP

Malware :

Backdoor.WinCE.Brador.A
WinCE.Dust.A
Backdoor:WinCE/PhoneCreeper.A
Dialer:WinCE/Terdial.A
Trojan:WinCE/Terdial

Last 20