Home / malware TrojanDownloader:Win32/Banload.AYD
First posted on 11 September 2014.
Source: MicrosoftAliases :
There are no other names known for TrojanDownloader:Win32/Banload.AYD.
Explanation :
Threat behavior
Installation
TrojanDownloader:Win32/Banload.AYD creates the following files on your PC:
- c:\documents and settings\administrator\application data\install_flashplayer13x32_mssa_aaa_aih.exe
Payload
Contacts remote hosts
TrojanDownloader:Win32/Banload.AYD may contact the following remote hosts using port 80:
- aihdownload.adobe.com
- thecompanyapp.net
Commonly, malware does this to:This malware description was produced and published using automated analysis of file SHA1 bca69ea3e68e069df02af7c5e367c20b10399ce5.Symptoms
- Confirm Internet connectivity
- Report a new infection to its author
- Receive configuration or other data
- Download and run files, including updates or other malware
- Receive instructions from a remote hacker
- Upload data taken from your PC
System changes
The following could indicate that you have this threat on your PC:
- You have these files:
c:\documents and settings\administrator\application data\install_flashplayer13x32_mssa_aaa_aih.exeLast update 11 September 2014
