SecurityHome.eu TrojanDownloader:BAT/Lnkget.AF

Home / malware PDF

TrojanDownloader:BAT/Lnkget.AF

First posted on 24 May 2010.
Source: SecurityHome
Aliases :
TrojanDownloader:BAT/Lnkget.AF is also known as Trojan-Downloader.Win32.Pif.zb (Kaspersky), Pif.Download.based (Dr.Web), BAT/TrojanDownloader.Ftp.NIJ.Gen (ESET), Mal/DownLnk-B (Sophos).
Explanation :
TrojanDownloader:Win32/Lnkget.AF is a detection for file shortcuts that connect to a TFTP server and download and execute arbitrary VBScript files.
Top

TrojanDownloader:Win32/Lnkget.AF is a detection for file shortcuts that connect to a TFTP server and download and execute arbitrary VBScript files. When these shortcuts are clicked on, they contact the TFTP server "w11e.com" and download a VBScript file. This file is saved and run as "%windows%\s.vbs".

Analysis by Chun Feng
Last update 24 May 2010

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Family:

TrojanDownloader:BAT/Lnkget.Y
TrojanDownloader:BAT/Lnkget.X
TrojanDownloader:BAT/Lnkget.AH
TrojanDownloader:BAT/Lnkget.AF
TrojanDownloader:BAT/Lnkget.AO
TrojanDownloader:BAT/Lnkget.F