Home / malwarePDF  

Trojan:Win32/Conedex.C


First posted on 29 February 2012.
Source: Microsoft

Aliases :

Trojan:Win32/Conedex.C is also known as TR/Redirector.BF (Avira), Trojan.Redirector.JS.BF (BitDefender), Win32/Redirector.A trojan (ESET), Trojan.Redirector (Ikarus), Troj/ZAccess-AG (Sophos), TROJ_REDIRECT.AL (Trend Micro).

Explanation :

Trojan:Win32/Conedex.C is a malicious JavaScript. The script sends a POST request to a certain server, and clicks on links in the reply.
Top

Trojan:Win32/Conedex.C is a malicious JavaScript. The script sends a POST request to a certain server, and clicks on links in the reply.

Payload

Clicks on links

When the JavaScript executes, it creates POST requests to a certain server. The server's reply may contain links. to certain webpages The JavaScript code then randomly clicks on the links contained in the POST reply.



Analysis by Stefan Sellmer

Last update 29 February 2012

 

TOP

Malware :

Family: