SecurityHome.eu Win32.Worm.DownadupJob.A

Home / malware PDF

Win32.Worm.DownadupJob.A

First posted on 21 November 2011.
Source: BitDefender
Aliases :
Win32.Worm.DownadupJob.A is also known as Worm:W32/Downadupjob.gen!A.
Explanation :
This is a generic detection of .job files created by Downadup worm.
One of the methods used by this worm to load its library file every day is by creating many Scheduled Tasks in %WINDOWS%Tasks. The name of the application which will be executed is rundll32.exe and the parameter has the following format: <random_name>.<random_extension>, <random_parameter> - this is the worm's .dll file.
More details about Downadup can be found at the following URL: Win32.Worm.Downadup.Gen
Last update 21 November 2011

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20