Home / malwarePDF  

Trojan.Paramcud


First posted on 31 March 2015.
Source: Symantec

Aliases :

There are no other names known for Trojan.Paramcud.

Explanation :

When the Trojan is executed, it connects to the following URLs: [http://]tnv.cultivr.com/microsoft/errorpost/default/connec[REMOVED][http://]tnv.cultivr.com/microsoftupdate/getupdate/defaul[REMOVED]
The Trojan may then perform the following actions on the compromised computer: Create new processesTraverse the file systemDelete filesUpdate itself

Last update 31 March 2015

 

TOP